Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm / 8503bd8c7dc6f82ec2de9d05e0a476e6ca5adc8b
commit8503bd8c7dc6f82ec2de9d05e0a476e6ca5adc8b[log] [tgz]
authorArjan van de Ven <arjan@linux.intel.com>Sat Sep 26 20:51:14 2009 +0200
committerJohn W. Linville <linville@tuxdriver.com>Mon Sep 28 16:55:06 2009 -0400
tree42da5de2f0ee624e675d7b27f7e8c05301de0d2d
parent0ff716136ab73d2fc1edc0664e38169e7a76bb9a [diff]
wext: Add bound checks for copy_from_user

The wireless extensions have a copy_from_user to a local stack
array "essid", but both me and gcc have failed to find where
the bounds for this copy are located in the code.

This patch adds some basic sanity checks for the copy length
to make sure that we don't overflow the stack buffer.

Signed-off-by: Arjan van de Ven <arjan@linux.intel.com>
Cc: linux-wireless@vger.kernel.org
Signed-off-by: John W. Linville <linville@tuxdriver.com>
1 file changed
tree: 42da5de2f0ee624e675d7b27f7e8c05301de0d2d
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. MAINTAINERS
  28. Makefile
  29. README
  30. REPORTING-BUGS