[LTP] [PATCH] network: new regression test for over-sized chunks in SCTP
Alexey Kodanev
alexey.kodanev@oracle.com
Wed Mar 7 10:17:59 CET 2018
On 06.03.2018 21:20, Petr Vorel wrote:
>> Fixed by upstream commit 07f2c7ab6f8d ("sctp: verify size of a
>> new chunk in _sctp_make_chunk()")
>
>> CVE-2018-5803
> I wonder whether to add it also into runtest/cve. But these aren't usually run with
> /opt/ltp/testscripts/network.sh. Don't we want to create something like runtest/cve-network?
>
> This is one of several tests in runtest/net.features which runs "forever", generating
> impressive load and blocking link making it impossible even to log in.
> Actually I wasn't able to pass it with any of my virtual machines (various distros).
> What is the prerequisite for the test? Separate "safe" link to SUT (not to be affected by
> the test)? It'd be great if the test wasn't too resource demanding.
There is no prerequisite for the test, adding addresses is needed
to construct a big INIT packets that will eventually include
all this variable size parameters, then send it to the server.
We can construct it manually though, it should be much faster.
I'll try to come up with another version.
Thanks,
Alexey
More information about the ltp
mailing list