Google Git
Sign in
kernel / pub / scm / linux / kernel / git / joro / linux / a5ecc6655e2b6b2517001b6698b6a61ceb6ccd58
commita5ecc6655e2b6b2517001b6698b6a61ceb6ccd58[log] [tgz]
authorBastian Blank <bastian@waldi.eu.org>Sun Feb 10 16:47:57 2008 +0200
committerGreg Kroah-Hartman <gregkh@suse.de>Sun Feb 10 22:02:37 2008 -0800
tree136c98fa61fc602be97a1023980baa3e2caa2dd6
parent23e4fef098fdc2205ab1be218f11d5b8078d9123 [diff]
splice: fix user pointer access in get_iovec_page_array()

patch 712a30e63c8066ed84385b12edbfb804f49cbc44 in mainline.

Commit 8811930dc74a503415b35c4a79d14fb0b408a361 ("splice: missing user
pointer access verification") added the proper access_ok() calls to
copy_from_user_mmap_sem() which ensures we can copy the struct iovecs
from userspace to the kernel.

But we also must check whether we can access the actual memory region
pointed to by the struct iovec to fix the access checks properly.

Signed-off-by: Bastian Blank <waldi@debian.org>
Acked-by: Oliver Pinter <oliver.pntr@gmail.com>
Cc: Jens Axboe <jens.axboe@oracle.com>
Cc: Andrew Morton <akpm@linux-foundation.org>
Signed-off-by: Pekka Enberg <penberg@cs.helsinki.fi>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
1 file changed
tree: 136c98fa61fc602be97a1023980baa3e2caa2dd6
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. fs/
  7. include/
  8. init/
  9. ipc/
  10. kernel/
  11. lib/
  12. mm/
  13. net/
  14. scripts/
  15. security/
  16. sound/
  17. usr/
  18. .gitignore
  19. .mailmap
  20. COPYING
  21. CREDITS
  22. Kbuild
  23. MAINTAINERS
  24. Makefile
  25. README
  26. REPORTING-BUGS