Hello, On 14/12/2025 at 00:13:39 GMT, Kathara Sasikumar <[email protected]> wrote:
> KMSAN reported an uninitialized-value access in > ieee802154_hdr_push_sechdr(). This happened because > mac802154_set_header_security() allowed frames with cb->secen=1 but > LLSEC disabled when secen_override=0, leaving parts of the security > header uninitialized. > > Fix the validation so security-enabled frames are rejected whenever > LLSEC is disabled, regardless of secen_override. Also clear the full > header struct in the header creation functions to avoid partial > initialization. > > Reported-by: [email protected] > Tested-by: [email protected] > Closes: https://syzkaller.appspot.com/bug?extid=60a66d44892b66b56545 > Signed-off-by: Kathara Sasikumar <[email protected]> > --- For what I understand... :-) Reviewed-by: Miquel Raynal <[email protected]> Thanks, Miquèl
