Re: [PATCH net] Drop packets with invalid headers to prevent KMSAN infoleak

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Re: [PATCH net] Drop packets with invalid headers to prevent KMSAN infoleak
From: Daniel Yang <danielyangkang@xxxxxxxxx>
Date: Mon, 21 Oct 2024 18:37:01 -0700
Cc: Daniel Borkmann <daniel@xxxxxxxxxxxxx>, John Fastabend <john.fastabend@xxxxxxxxx>, Alexei Starovoitov <ast@xxxxxxxxxx>, Andrii Nakryiko <andrii@xxxxxxxxxx>, Eduard Zingerman <eddyz87@xxxxxxxxx>, Song Liu <song@xxxxxxxxxx>, Yonghong Song <yonghong.song@xxxxxxxxx>, KP Singh <kpsingh@xxxxxxxxxx>, Stanislav Fomichev <sdf@xxxxxxxxxxx>, Hao Luo <haoluo@xxxxxxxxxx>, Jiri Olsa <jolsa@xxxxxxxxxx>, "David S. Miller" <davem@xxxxxxxxxxxxx>, Eric Dumazet <edumazet@xxxxxxxxxx>, Jakub Kicinski <kuba@xxxxxxxxxx>, Paolo Abeni <pabeni@xxxxxxxxxx>, "open list:BPF [NETWORKING] (tcx & tc BPF, sock_addr)" <bpf@xxxxxxxxxxxxxxx>, "open list:BPF [NETWORKING] (tcx & tc BPF, sock_addr)" <netdev@xxxxxxxxxxxxxxx>, open list <linux-kernel@xxxxxxxxxxxxxxx>, syzbot+346474e3bf0b26bd3090@xxxxxxxxxxxxxxxxxxxxxxxxx
In-reply-to: <c7d0503b-e20d-4a6d-aecf-2bd7e1c7a450@linux.dev>

> A test in selftests/bpf is needed to reproduce and better understand this.
I don't know much about self tests but I've just been using the syzbot
repro and #syz test at the link in the patch:
https://syzkaller.appspot.com/bug?extid=346474e3bf0b26bd3090. Testing
the patch showed that the uninitialized memory was not getting written
to memory.

> Only bpf_clone_redirect() is needed to reproduce or other bpf_skb_*() helpers calls
> are needed to reproduce?

Follow-Ups:
- Re: [PATCH net] Drop packets with invalid headers to prevent KMSAN infoleak
  - From: Martin KaFai Lau
- Re: [PATCH net] Drop packets with invalid headers to prevent KMSAN infoleak
  - From: Paolo Abeni

References:
- [PATCH net] Drop packets with invalid headers to prevent KMSAN infoleak
  - From: Daniel Yang
- Re: [PATCH net] Drop packets with invalid headers to prevent KMSAN infoleak
  - From: Martin KaFai Lau

Prev by Date: Re: [PATCH bpf-next v6 3/9] bpf: Support private stack for struct ops programs
Next by Date: [no subject]
Previous by thread: Re: [PATCH net] Drop packets with invalid headers to prevent KMSAN infoleak
Next by thread: Re: [PATCH net] Drop packets with invalid headers to prevent KMSAN infoleak
Index(es):
- Date
- Thread

[Index of Archives] [Linux Samsung SoC] [Linux Rockchip SoC] [Linux Actions SoC] [Linux for Synopsys ARC Processors] [Linux NFS] [Linux NILFS] [Linux USB Devel] [Video for Linux] [Linux Audio Users] [Yosemite News] [Linux Kernel] [Linux SCSI]