Hello Eric,

Am 26. Nov 14:43 hat Eric Dumazet geschrieben:

syzbot is able to feed a packet with 14 bytes, pretending
it is a vlan one.

Since fill_frame_info() is relying on skb->mac_len already,
extend the check to cover this case.

thanks for addressing this szybot finding.

Unfortunately, this seems to cause issues with VLAN tagged frames being
dropped from a PRP interface.

My setup consists of a custom embedded system equipped with v6.6 kernel,
recently updated from v6.6.62 to v6.6.69. In order to gain support for
VLAN tagged messages on top of PRP, I have applied first patch of the
series (see msgid 20241106091710.3308519-2-danishanwar@ti.com) that is
currently integrated with v6.13.

Now I want to send GOOSE messages (L2 broadcast messages with VLAN
header, including id=0 and QoS information) via the PRP interface.
With v6.6.62 this works as expected, with v6.6.69 the functionality
stopped again, with all VLAN-tagged frames being dropped from the PRP
interface.

By reverting this fix locally, I was able to restore the desired
functionality. But I do not iyet understand, why this fix breaks
sending of VLAN tagged frames in general.

Do you already know about this side effect?
Can you guide me to narrow down this issue?


Best regards
Stephan