Re: Bug in 2.4.0-test9 and test10 with sys_shmat()

From: aprasad@in.ibm.com
Date: Fri Nov 17 2000 - 03:09:27 EST

Next message: Sebastien.Rigaud@cec.eu.int: ""unable to handle paging request...""
Previous message: Christoph Rohland: "Re: shm swapping in 2.4 again"
Maybe in reply to: Richard Jerrell: "Bug in 2.4.0-test9 and test10 with sys_shmat()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>Sending -1 as the shmid to shmat will cause an oops. 2.2.16 caught this
>with simple boundry checking, so replace the lines

>if (!shm_sb || (shmid % SEQ_MULTIPLIER) == zero_id)
return -EINVAL;

>with

>if (!shm_sb || shmid < 0 || (shmid % SEQ_MULTIPLIER) == zero_id)
return -EINVAL;

-1 shmid is causing oops only when used with superuser privileges,
otherwise it returns -EINVAL.
regards
Anil

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/

Next message: Sebastien.Rigaud@cec.eu.int: ""unable to handle paging request...""
Previous message: Christoph Rohland: "Re: shm swapping in 2.4 again"
Maybe in reply to: Richard Jerrell: "Bug in 2.4.0-test9 and test10 with sys_shmat()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Nov 23 2000 - 21:00:12 EST