lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Mon, 18 May 2015 16:56:31 +0100 From: Al Viro <viro@...IV.linux.org.uk> To: Louis Langholtz <lou_langholtz@...com> Cc: linux-kernel@...r.kernel.org Subject: Re: [PATCH] include/linux: avoid narrowing length parameter values On Mon, May 18, 2015 at 09:33:10AM -0600, Louis Langholtz wrote: > memcpy_from_msg() and memcpy_to_msg() functions previously called > memcpy_fromiovec() and memcpy_toiovec() functions respectively. The > memcpy_fromiovec() and memcpy_toiovec() functions took a length parameter > of type int. memcpy_from_msg() and memcpy_to_msg() now call > copy_from_iter() and copy_to_iter() functions respectively which take a length > parameter of type size_t. Most code calling the memcpy_from_msg() and > memcpy_to_msg() functions currently pass a length value of type size_t. > This patch updates the memcpy_from_msg() and memcpy_to_msg() functions > concordantly to take the length parameter of type size_t. This also avoids a potential > for data narrowing. iov_iter for sendmsg or recvmsg *can't* have more than 2Gb of data; if it ever does, it's a serious bug. IOW, NAK - that's pointless. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists