On Thu, 07 Apr 2016 11:20:02 +0200,
Takashi Iwai wrote:
>
> On Fri, 01 Apr 2016 22:11:11 +0200,
> Takashi Iwai wrote:
> >
> > On Fri, 01 Apr 2016 21:21:05 +0200,
> > Al Viro wrote:
> > >
> > > On Fri, Apr 01, 2016 at 08:39:19PM +0200, Takashi Iwai wrote:
> > > >
> > > > /* Get packet from user
On Thu, 07 Apr 2016 11:20:02 +0200,
Takashi Iwai wrote:
>
> On Fri, 01 Apr 2016 22:11:11 +0200,
> Takashi Iwai wrote:
> >
> > On Fri, 01 Apr 2016 21:21:05 +0200,
> > Al Viro wrote:
> > >
> > > On Fri, Apr 01, 2016 at 08:39:19PM +0200, Takashi Iwai wrote:
> > > >
> > > > /* Get packet from user
On Fri, 01 Apr 2016 22:11:11 +0200,
Takashi Iwai wrote:
>
> On Fri, 01 Apr 2016 21:21:05 +0200,
> Al Viro wrote:
> >
> > On Fri, Apr 01, 2016 at 08:39:19PM +0200, Takashi Iwai wrote:
> > >
> > > /* Get packet from user space buffer */
> > > static ssize_t tun_get_user(struct tun_struct *tun,
On Fri, 01 Apr 2016 22:11:11 +0200,
Takashi Iwai wrote:
>
> On Fri, 01 Apr 2016 21:21:05 +0200,
> Al Viro wrote:
> >
> > On Fri, Apr 01, 2016 at 08:39:19PM +0200, Takashi Iwai wrote:
> > >
> > > /* Get packet from user space buffer */
> > > static ssize_t tun_get_user(struct tun_struct *tun,
On Fri, 01 Apr 2016 21:21:05 +0200,
Al Viro wrote:
>
> On Fri, Apr 01, 2016 at 08:39:19PM +0200, Takashi Iwai wrote:
> >
> > /* Get packet from user space buffer */
> > static ssize_t tun_get_user(struct tun_struct *tun, struct tun_file *tfile,
> > void *msg_control,
On Fri, 01 Apr 2016 21:21:05 +0200,
Al Viro wrote:
>
> On Fri, Apr 01, 2016 at 08:39:19PM +0200, Takashi Iwai wrote:
> >
> > /* Get packet from user space buffer */
> > static ssize_t tun_get_user(struct tun_struct *tun, struct tun_file *tfile,
> > void *msg_control,
On Fri, Apr 01, 2016 at 08:39:19PM +0200, Takashi Iwai wrote:
>
> /* Get packet from user space buffer */
> static ssize_t tun_get_user(struct tun_struct *tun, struct tun_file *tfile,
> void *msg_control, struct iov_iter *from,
> int noblock)
>
On Fri, Apr 01, 2016 at 08:39:19PM +0200, Takashi Iwai wrote:
>
> /* Get packet from user space buffer */
> static ssize_t tun_get_user(struct tun_struct *tun, struct tun_file *tfile,
> void *msg_control, struct iov_iter *from,
> int noblock)
>
On Fri, 01 Apr 2016 19:39:20 +0200,
Al Viro wrote:
>
> On Fri, Apr 01, 2016 at 05:02:04PM +0200, Takashi Iwai wrote:
> > Currently, iov_iter_advance() just calls iterate_and_advance() macro
> > as is, even if size=0 is passed. Usually it is OK to pass size=0 to
> > the macro. However, when the
On Fri, 01 Apr 2016 19:39:20 +0200,
Al Viro wrote:
>
> On Fri, Apr 01, 2016 at 05:02:04PM +0200, Takashi Iwai wrote:
> > Currently, iov_iter_advance() just calls iterate_and_advance() macro
> > as is, even if size=0 is passed. Usually it is OK to pass size=0 to
> > the macro. However, when the
On Fri, Apr 01, 2016 at 05:02:04PM +0200, Takashi Iwai wrote:
> Currently, iov_iter_advance() just calls iterate_and_advance() macro
> as is, even if size=0 is passed. Usually it is OK to pass size=0 to
> the macro. However, when the iov_iter has been already advanced to
> the end of the array,
On Fri, Apr 01, 2016 at 05:02:04PM +0200, Takashi Iwai wrote:
> Currently, iov_iter_advance() just calls iterate_and_advance() macro
> as is, even if size=0 is passed. Usually it is OK to pass size=0 to
> the macro. However, when the iov_iter has been already advanced to
> the end of the array,
Currently, iov_iter_advance() just calls iterate_and_advance() macro
as is, even if size=0 is passed. Usually it is OK to pass size=0 to
the macro. However, when the iov_iter has been already advanced to
the end of the array, it may lead to an out-of-bound access, since the
macro always reads
Currently, iov_iter_advance() just calls iterate_and_advance() macro
as is, even if size=0 is passed. Usually it is OK to pass size=0 to
the macro. However, when the iov_iter has been already advanced to
the end of the array, it may lead to an out-of-bound access, since the
macro always reads
14 matches
Mail list logo