Re: [PATCH 4.4 11/41] KEYS: fix writing past end of user-supplied buffer in keyring_read()

From: David Howells
Date: Thu Oct 19 2017 - 11:27:37 EST

Next message: Will Deacon: "Re: [PATCH v6 0/6] Add HiSilicon SoC uncore Performance Monitoring Unit driver"
Previous message: Timur Tabi: "Re: [PATCH 1/4] arm64: defconfig: enable new trigger modes for leds"
In reply to: Eric Biggers: "Re: [PATCH 4.4 11/41] KEYS: fix writing past end of user-supplied buffer in keyring_read()"
Next in thread: Eric Biggers: "Re: [PATCH 4.4 11/41] KEYS: fix writing past end of user-supplied buffer in keyring_read()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Eric Biggers <ebiggers@xxxxxxxxxx> wrote:

> Hi Ben, thanks for pointing this out. I had assumed the "obvious" semantics,
> but it turns out that's not what's documented.

The manpage is correct. keyctl_read_alloc() in libkeyutils relies on the
behaviour documented there with respect to the full size of the data always
being returned, even if the buffer was too small.

The keyring cannot be modified whilst it is being read, so that's not a
concern.

keyctl_read_alloc() doesn't care if the buffer actually gets written to or
not, but it's best to honour the manpage.

David

Next message: Will Deacon: "Re: [PATCH v6 0/6] Add HiSilicon SoC uncore Performance Monitoring Unit driver"
Previous message: Timur Tabi: "Re: [PATCH 1/4] arm64: defconfig: enable new trigger modes for leds"
In reply to: Eric Biggers: "Re: [PATCH 4.4 11/41] KEYS: fix writing past end of user-supplied buffer in keyring_read()"
Next in thread: Eric Biggers: "Re: [PATCH 4.4 11/41] KEYS: fix writing past end of user-supplied buffer in keyring_read()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]