> > > We deliberately allow invalid attr->port_nums if IB_QP_PORT is not > set. > > > Why must we do that? From a kernel hardening perspective it would > > > be better to ban invalid values all together... > > > > It is part of the user ABI, so it has to stay that way... > > Can we pre-process all invalid parameters at the kernel entry points > to ensure that drivers receive clean input? > > For example, overwrite attr->port_nums to be zero if IB_QP_PORT is not > set. I'm not sure this helps much. The value must still be ignored by the driver, whether it's in range or not. -- To unsubscribe from this list: send the line "unsubscribe linux-rdma" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
