On Tue, Dec 15, 2015 at 9:58 PM, David Miller <davem@xxxxxxxxxxxxx> wrote: > From: Dmitry Vyukov <dvyukov@xxxxxxxxxx> > Date: Tue, 15 Dec 2015 21:55:37 +0100 > >> I've seen a kernel address at least in pptp_bind, > > We're not talking about pptp_bind. > > We're talking about llcp_{,raw}_sock_bind(). > > If your hex dump doesn't show it, don't report anything unless you are > absolutely sure via code inspection that there could be a leak. And > in that case make it perfectly clear exactly how that can happen. > > I am generally unimpressed with your reports half of the time, > and just a small amount of extra effort would extraordinarily > improve the quality of the things your post. > > Thanks. > >> So it is almost impossible to prove that a PC cannot be leaked. > > You can't show that anything is actually being leaked in this specific > case, period. I am a human and sometimes do mistakes. In this case, I checked that the bind succeeds when I pass sockaddrlen=0, which is suspicious and matches the behavior of pptp case (not checking sockaddrlen at all). Then I looked at the code and misread it, because it uses a different idiom from other cases I saw (explicitly checking sockaddrlen value). Then I wrote a test program and observed a varying, garbage-looking values returned from getsockname. From that I concluded that there is an information leak. This is wrong. For the purpose of improvement of my reports, what are the other reports you are not impressed with and why? Thank you -- To unsubscribe from this list: send the line "unsubscribe linux-wireless" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html