sockmod_pfp should limit bpf program size
If a bpf_program of absurd length is passed to sockmod_pfp via ATTACH_FILTER, there's a reasonable chance it will hang during the kmem_alloc due to resource constraints. There's already a well defined upper size limit for BPF programs which should be enforced.
Updated by Electric Monk almost 6 years ago
- Status changed from New to Closed
commit 336069c20319c172c4ff9d87d67e8f6301c98a5d Author: Patrick Mooney <firstname.lastname@example.org> Date: 2015-02-14T18:56:48.000Z 5573 sockmod_pfp improperly handles SO_RCVBUF 5574 sockmod_pfp unable to locate ifindex for bind 5575 sockmod_pfp needs larger statistics counters 5576 sockmod_pfp improperly handles SIOCGSTAMP 5577 sockmod_pfp should limit bpf program size Reviewed by: Jerry Jelinek <email@example.com> Reviewed by: Robert Mustacchi <firstname.lastname@example.org> Reviewed by: Richard Lowe <email@example.com> Approved by: Dan McDonald <firstname.lastname@example.org>