Commit 981d647c authored Nov 19, 2024 by Michal Luczaj Committed by Greg Kroah-Hartman Dec 14, 2024

llc: Improve setsockopt() handling of malformed user input



[ Upstream commit 1465036b ]

copy_from_sockptr() is used incorrectly: return value is the number of
bytes that could not be copied. Since it's deprecated, switch to
copy_safe_from_sockptr().

Note: Keeping the `optlen != sizeof(int)` check as copy_safe_from_sockptr()
by itself would also accept optlen > sizeof(int). Which would allow a more
lenient handling of inputs.

Fixes: 1da177e4 ("Linux-2.6.12-rc2")
Suggested-by: David Wei <dw@davidwei.uk>
Signed-off-by: Michal Luczaj <mhal@rbox.co>
Signed-off-by: Paolo Abeni <pabeni@redhat.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>

parent f688979e

Show whitespace changes

Inline Side-by-side

CodeLinaro @codelinaro
mentioned in commit 2f2e115e
· Nov 05, 2025

mentioned in commit 2f2e115e

mentioned in commit 2f2e115eecbda0de5d89f4303e8ae41018a36991

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 2f2e115e
· Nov 05, 2025

mentioned in commit 2f2e115e

mentioned in commit 2f2e115eecbda0de5d89f4303e8ae41018a36991

Toggle commit list

Please to comment