Re: Audit control kernel patch

From: Serge Hallyn (serue@private)
Date: Fri Dec 03 2004 - 07:12:32 PST


And a resend, this time with the patch attached.

-serge

On Fri, 2004-12-03 at 08:12 -0500, Stephen Smalley wrote:
> <snip>
> +int netlink_get_msgtype(struct sk_buff *skb)
> +{
> +	struct nlmsghdr *nlh = (struct nlmsghdr *)skb->data;
> +
> +	if (nlh->nlmsg_len < sizeof(*nlh) || skb->len < nlh->nlmsg_len)
> +		return -EINVAL;
> +	return nlh->nlmsg_type;
> +}
> +
> </snip>
> 
> In the earlier version of this patch, you also checked for skb->len <
> NLMSG_SPACE(0) before dereferencing skb->data at all.  Was that
> unnecessary or did you accidentally drop it?
> 
-- 
Serge Hallyn <serue@private>





This archive was generated by hypermail 2.1.3 : Fri Dec 03 2004 - 06:00:27 PST