On Wed, Dec 21, 2016 at 10:33:20PM +0100, Hannes Frederic Sowa wrote:
> > Given all of this, I think the best thing to do is validate the offset
> > after the queue walks, which is pretty much what Dave Jones's original
> > patch was doing.
>
> I think both approaches protect against the bug reasonably well, but
> Dave's patch has a bug: we must either call ip6_flush_pending_frames to
> clear the socket write queue with the buggy send request.
I can fix that up and resubmit, or we can go with your approach.
DaveM ?
Dave
