git.proxmox.com Git - mirror_ubuntu-bionic-kernel.git/commit

author	Dmitry Safonov <dima@arista.com>
	Thu, 30 May 2019 16:06:52 +0000 (18:06 +0200)
committer	Kleber Sacilotto de Souza <kleber.souza@canonical.com>
	Mon, 24 Jun 2019 14:21:33 +0000 (16:21 +0200)
commit	2ca2d6e51f7fea746702312a2b5a1ec411b691b4
tree	35b5c2d2f4ade8b547ad958142d3abddc2709108	tree
parent	48b3411d4fd5982884bfdbb2768e922c8a1f23d5	commit \| diff

netlink: Don't shift on 64 for ngroups

BugLink: https://bugs.launchpad.net/bugs/1831103
It's legal to have 64 groups for netlink_sock.

As user-supplied nladdr->nl_groups is __u32, it's possible to subscribe
only to first 32 groups.

The check for correctness of .bind() userspace supplied parameter
is done by applying mask made from ngroups shift. Which broke Android
as they have 64 groups and the shift for mask resulted in an overflow.

Fixes: 61f4b23769f0 ("netlink: Don't shift with UB on nlk->ngroups")
Cc: "David S. Miller" <davem@davemloft.net>
Cc: Herbert Xu <herbert@gondor.apana.org.au>
Cc: Steffen Klassert <steffen.klassert@secunet.com>
Cc: netdev@vger.kernel.org
Cc: stable@vger.kernel.org
Reported-and-Tested-by: Nathan Chancellor <natechancellor@gmail.com>
Signed-off-by: Dmitry Safonov <dima@arista.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
(cherry picked from commit 91874ecf32e41b5d86a4cb9d60e0bee50d828058)
Signed-off-by: Andrea Righi <andrea.righi@canonical.com>
Acked-by: Colin Ian King <colin.king@canonical.com>
Acked-by: Marcelo Henrique Cerri <marcelo.cerri@canonical.com>
Acked-by: Kamal Mostafa <kamal@canonical.com>
Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>