Re: [PATCH net-next] udp: properly support MSG_PEEK with truncated buffers

[PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Michal Kubecek <hidden> · 2015-12-28
Re: [PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Sabrina Dubroca <sd@queasysnail.net> · 2015-12-28
Re: [PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Michal Kubecek <hidden> · 2015-12-28
Re: [PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Eric Dumazet <hidden> · 2015-12-28
[PATCH net-next] udp: properly support MSG_PEEK with truncated buffers · Eric Dumazet <hidden> · 2015-12-30
Re: [PATCH net-next] udp: properly support MSG_PEEK with truncated buffers · Herbert Xu <herbert@gondor.apana.org.au> · 2015-12-30
Re: [PATCH net-next] udp: properly support MSG_PEEK with truncated buffers · David Miller <davem@davemloft.net> · 2016-01-04
Re: [PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Jiri Slaby <hidden> · 2016-01-05
Re: [PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Ben Hutchings <hidden> · 2016-01-05
Re: [PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Jiri Slaby <hidden> · 2016-01-05
Re: [PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Ben Hutchings <hidden> · 2016-01-13
Re: [PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Eric Dumazet <hidden> · 2016-01-13
Re: [PATCH stable-3.2 stable-3.12] net: fix checksum check in skb_copy_and_csum_datagram_iovec() · Luis Henriques <hidden> · 2016-01-15

From: Herbert Xu <herbert@gondor.apana.org.au>
Date: 2015-12-30 22:40:03
Also in: stable

On Wed, Dec 30, 2015 at 08:51:12AM -0500, Eric Dumazet wrote:

From: Eric Dumazet <edumazet@google.com>

Backport of this upstream commit into stable kernels :
89c22d8c3b27 ("net: Fix skb csum races when peeking")
exposed a bug in udp stack vs MSG_PEEK support, when user provides
a buffer smaller than skb payload.
    
In this case,
skb_copy_and_csum_datagram_iovec(skb, sizeof(struct udphdr),
                                 msg->msg_iov);
returns -EFAULT.
    
This bug does not happen in upstream kernels since Al Viro did a great
job to replace this into :
skb_copy_and_csum_datagram_msg(skb, sizeof(struct udphdr), msg);
This variant is safe vs short buffers.
    
For the time being, instead reverting Herbert Xu patch and add back
skb->ip_summed invalid changes, simply store the result of
udp_lib_checksum_complete() so that we avoid computing the checksum a
second time, and avoid the problematic
skb_copy_and_csum_datagram_iovec() call.

This patch can be applied on recent kernels as it avoids a double
checksumming, then backported to stable kernels as a bug fix.

Signed-off-by: Eric Dumazet <edumazet@google.com>

Acked-by: Herbert Xu <herbert@gondor.apana.org.au>
-- 
Email: Herbert Xu [off-list ref]
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help