lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:	Mon, 2 May 2016 09:41:17 -0700
From:	Greg KH <gregkh@...uxfoundation.org>
To:	Tejun Heo <tj@...nel.org>
Cc:	linux-kernel@...r.kernel.org, adityakali@...gle.com,
	linux-api@...r.kernel.org, containers@...ts.linux-foundation.org,
	cgroups@...r.kernel.org, akpm@...ux-foundation.org,
	ebiederm@...ssion.com, serge.hallyn@...ntu.com, lizefan@...wei.com,
	hannes@...xchg.org
Subject: Re: [PATCH 1/2] kernfs_path_from_node_locked: don't overwrite nlen

On Mon, May 02, 2016 at 12:32:56PM -0400, Tejun Heo wrote:
> On Wed, Apr 20, 2016 at 03:43:13PM -0400, Tejun Heo wrote:
> > On Sun, Apr 17, 2016 at 03:04:31PM -0500, serge.hallyn@...ntu.com wrote:
> > > From: Serge Hallyn <serge.hallyn@...ntu.com>
> > > 
> > > We've calculated @len to be the bytes we need for '/..' entries from
> > > @kn_from to the common ancestor, and calculated @nlen to be the extra
> > > bytes we need to get from the common ancestor to @kn_to.  We use them
> > > as such at the end.  But in the loop copying the actual entries, we
> > > overwrite @nlen.  Use a temporary variable for that instead.
> > > 
> > > Without this, the return length, when the buffer is large enough, is
> > > wrong.  (When the buffer is NULL or too small, the returned value is
> > > correct. The buffer contents are also correct.)
> > > 
> > > Interestingly, no callers of this function are affected by this as of
> > > yet.  However the upcoming cgroup_show_path() will be.
> > > 
> > > Signed-off-by: Serge Hallyn <serge.hallyn@...ntu.com>
> > 
> > Acked-by: Tejun Heo <tj@...nel.org>
> > 
> > Greg, can you please pick this one up for v4.6?
> 
> Looks like Greg missed this one.  Greg, I'll route this through
> cgroup/for-4.6-fixes.

Please do, sorry, it's not in my queue anymore :(

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ