diff options
| author | David Gibson <david@gibson.dropbear.id.au> | 2014-04-23 20:22:35 -0400 |
|---|---|---|
| committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2014-05-31 00:52:15 -0400 |
| commit | 1ab27dd7edb75bc3034daab503a912647bdf95ba (patch) | |
| tree | 2a52a8493b89700a179f3bd00e8671baa6f1ea25 /net | |
| parent | eac664d2832178c1d3a5e7560a26c10001717b77 (diff) | |
rtnetlink: Warn when interface's information won't fit in our packet
[ Upstream commit 973462bbde79bb827824c73b59027a0aed5c9ca6 ]
Without IFLA_EXT_MASK specified, the information reported for a single
interface in response to RTM_GETLINK is expected to fit within a netlink
packet of NLMSG_GOODSIZE.
If it doesn't, however, things will go badly wrong, When listing all
interfaces, netlink_dump() will incorrectly treat -EMSGSIZE on the first
message in a packet as the end of the listing and omit information for
that interface and all subsequent ones. This can cause getifaddrs(3) to
enter an infinite loop.
This patch won't fix the problem, but it will WARN_ON() making it easier to
track down what's going wrong.
Signed-off-by: David Gibson <david@gibson.dropbear.id.au>
Reviewed-by: Jiri Pirko <jpirko@redhat.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Diffstat (limited to 'net')
| -rw-r--r-- | net/core/rtnetlink.c | 17 |
1 files changed, 12 insertions, 5 deletions
diff --git a/net/core/rtnetlink.c b/net/core/rtnetlink.c index 4c3087dffe78..5bfec2864bb8 100644 --- a/net/core/rtnetlink.c +++ b/net/core/rtnetlink.c | |||
| @@ -1039,6 +1039,7 @@ static int rtnl_dump_ifinfo(struct sk_buff *skb, struct netlink_callback *cb) | |||
| 1039 | struct hlist_head *head; | 1039 | struct hlist_head *head; |
| 1040 | struct nlattr *tb[IFLA_MAX+1]; | 1040 | struct nlattr *tb[IFLA_MAX+1]; |
| 1041 | u32 ext_filter_mask = 0; | 1041 | u32 ext_filter_mask = 0; |
| 1042 | int err; | ||
| 1042 | 1043 | ||
| 1043 | s_h = cb->args[0]; | 1044 | s_h = cb->args[0]; |
| 1044 | s_idx = cb->args[1]; | 1045 | s_idx = cb->args[1]; |
| @@ -1059,11 +1060,17 @@ static int rtnl_dump_ifinfo(struct sk_buff *skb, struct netlink_callback *cb) | |||
| 1059 | hlist_for_each_entry_rcu(dev, head, index_hlist) { | 1060 | hlist_for_each_entry_rcu(dev, head, index_hlist) { |
| 1060 | if (idx < s_idx) | 1061 | if (idx < s_idx) |
| 1061 | goto cont; | 1062 | goto cont; |
| 1062 | if (rtnl_fill_ifinfo(skb, dev, RTM_NEWLINK, | 1063 | err = rtnl_fill_ifinfo(skb, dev, RTM_NEWLINK, |
| 1063 | NETLINK_CB(cb->skb).portid, | 1064 | NETLINK_CB(cb->skb).portid, |
| 1064 | cb->nlh->nlmsg_seq, 0, | 1065 | cb->nlh->nlmsg_seq, 0, |
| 1065 | NLM_F_MULTI, | 1066 | NLM_F_MULTI, |
| 1066 | ext_filter_mask) <= 0) | 1067 | ext_filter_mask); |
| 1068 | /* If we ran out of room on the first message, | ||
| 1069 | * we're in trouble | ||
| 1070 | */ | ||
| 1071 | WARN_ON((err == -EMSGSIZE) && (skb->len == 0)); | ||
| 1072 | |||
| 1073 | if (err <= 0) | ||
| 1067 | goto out; | 1074 | goto out; |
| 1068 | 1075 | ||
| 1069 | nl_dump_check_consistent(cb, nlmsg_hdr(skb)); | 1076 | nl_dump_check_consistent(cb, nlmsg_hdr(skb)); |