[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <Y3ePOhpctTf7Buf8@codewreck.org>
Date: Fri, 18 Nov 2022 22:57:14 +0900
From: asmadeus@...ewreck.org
To: "Guozihua (Scott)" <guozihua@...wei.com>
Cc: Christian Schoenebeck <linux_oss@...debyte.com>, ericvh@...il.com,
lucho@...kov.net, davem@...emloft.net, edumazet@...gle.com,
kuba@...nel.org, pabeni@...hat.com,
v9fs-developer@...ts.sourceforge.net, netdev@...r.kernel.org
Subject: Re: [PATCH 0/3 v2] 9p: Fix write overflow in p9_read_work
Guozihua (Scott) wrote on Fri, Nov 18, 2022 at 06:18:16PM +0800:
> I retried the repro on your branch, the issue does not reproduce. What
> a good pair of eyes :)!
Thanks!
By the way the original check also compared size to msize directly,
without an offset for headers, so with hindsight it looks clear enough
that the size is the full size including the header.
I'm not sure why I convinced myself it didn't...
Anyway, this made me check other places where we might fail at this and
I've a couple more patches; please review if you have time.
I'll send them all to Linus next week...
--
Dominique
Powered by blists - more mailing lists