Re: [PATCH net-next] sctp: bring inet(6)_skb_parm back to sctp_input_cb

2020-11-05 Thread Jakub Kicinski
On Thu, 5 Nov 2020 00:49:09 -0300 Marcelo Ricardo Leitner wrote: > On Wed, Nov 04, 2020 at 02:55:32PM +0800, Xin Long wrote: > > inet(6)_skb_parm was removed from sctp_input_cb by Commit a1dd2cf2f1ae > > ("sctp: allow changing transport encap_port by peer packets"), as it > > thought sctp_input_cb-

Re: [PATCH net-next] sctp: bring inet(6)_skb_parm back to sctp_input_cb

2020-11-04 Thread Marcelo Ricardo Leitner
On Wed, Nov 04, 2020 at 02:55:32PM +0800, Xin Long wrote: > inet(6)_skb_parm was removed from sctp_input_cb by Commit a1dd2cf2f1ae > ("sctp: allow changing transport encap_port by peer packets"), as it > thought sctp_input_cb->header is not used any more in SCTP. > > syzbot reported a crash: > >

[PATCH net-next] sctp: bring inet(6)_skb_parm back to sctp_input_cb

2020-11-03 Thread Xin Long
inet(6)_skb_parm was removed from sctp_input_cb by Commit a1dd2cf2f1ae ("sctp: allow changing transport encap_port by peer packets"), as it thought sctp_input_cb->header is not used any more in SCTP. syzbot reported a crash: [ ] BUG: KASAN: use-after-free in decode_session6+0xe7c/0x1580 [ ]