diff options
author | Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp> | 2019-04-12 19:53:38 +0900 |
---|---|---|
committer | David S. Miller <davem@davemloft.net> | 2019-04-12 10:25:03 -0700 |
commit | d852be84770c0611f8b76bd7046c6a814c5b9f11 (patch) | |
tree | b3eed0119109bd2d11d1bc48bafd89ef75a1efd0 /net | |
parent | 175f7c1f01d30b2088491bee4636fbf846fb76ce (diff) | |
download | linux-d852be84770c0611f8b76bd7046c6a814c5b9f11.tar.gz linux-d852be84770c0611f8b76bd7046c6a814c5b9f11.tar.bz2 linux-d852be84770c0611f8b76bd7046c6a814c5b9f11.zip |
net: netlink: Check address length before reading groups field
KMSAN will complain if valid address length passed to bind() is shorter
than sizeof(struct sockaddr_nl) bytes.
Signed-off-by: Tetsuo Handa <penguin-kernel@I-love.SAKURA.ne.jp>
Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'net')
-rw-r--r-- | net/netlink/af_netlink.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/net/netlink/af_netlink.c b/net/netlink/af_netlink.c index f28e937320a3..216ab915dd54 100644 --- a/net/netlink/af_netlink.c +++ b/net/netlink/af_netlink.c @@ -988,7 +988,7 @@ static int netlink_bind(struct socket *sock, struct sockaddr *addr, struct netlink_sock *nlk = nlk_sk(sk); struct sockaddr_nl *nladdr = (struct sockaddr_nl *)addr; int err = 0; - unsigned long groups = nladdr->nl_groups; + unsigned long groups; bool bound; if (addr_len < sizeof(struct sockaddr_nl)) @@ -996,6 +996,7 @@ static int netlink_bind(struct socket *sock, struct sockaddr *addr, if (nladdr->nl_family != AF_NETLINK) return -EINVAL; + groups = nladdr->nl_groups; /* Only superuser is allowed to listen multicasts */ if (groups) { |