mirror of
https://mirrors.bfsu.edu.cn/git/linux.git
synced 2024-11-18 09:44:18 +08:00
f45655f6a6
If the maximum length specified for the to be accessed string for strncpy_from_user() and strnlen_user() is zero the following incorrect values would be returned or incorrect memory accesses would happen: strnlen_user_std() and strnlen_user_pt() incorrectly return "1" strncpy_from_user_pt() would incorrectly access "dst[maxlen - 1]" strncpy_from_user_mvcos() would incorrectly return "-EFAULT" Fix all these oddities by adding early checks. Reviewed-by: Gerald Schaefer <gerald.schaefer@de.ibm.com> Signed-off-by: Heiko Carstens <heiko.carstens@de.ibm.com> Signed-off-by: Martin Schwidefsky <schwidefsky@de.ibm.com> |
||
|---|---|---|
| .. | ||
| delay.c | ||
| div64.c | ||
| Makefile | ||
| mem32.S | ||
| mem64.S | ||
| qrnnd.S | ||
| spinlock.c | ||
| string.c | ||
| uaccess_mvcos.c | ||
| uaccess_pt.c | ||
| uaccess_std.c | ||
| uaccess.h | ||
| ucmpdi2.c | ||
| usercopy.c | ||