[PATCH 1/2] oprofile, s390: Fix uninitialized memory access when writing to oprofilefs

From: Robert Richter
Date: Fri Aug 24 2012 - 14:54:33 EST

Next message: Theodore Ts'o: "Re: Drop support for x86-32"
Previous message: Robert Richter: "[PATCH 2/2] oprofile: Remove 'WQ on CPUx, prefer CPUy' warning"
In reply to: Andi Kleen: "Re: [PATCH 2/2] oprofile: Remove 'WQ on CPUx, prefer CPUy' warning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

If oprofilefs_ulong_from_user() is called with count equals zero, *val
remains unchanged. Depending on the implementation it might be
uninitialized. Fixing users of oprofilefs_ulong_ from_user().

We missed these s390 changes with:

913050b oprofile: Fix uninitialized memory access when writing to writing to oprofilefs

Cc: stable@xxxxxxxxxxxxxxx # 3.3+
Signed-off-by: Robert Richter <robert.richter@xxxxxxx>
---
arch/s390/oprofile/init.c | 10 +++++-----
1 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/arch/s390/oprofile/init.c b/arch/s390/oprofile/init.c
index a1e9d69..584b936 100644
--- a/arch/s390/oprofile/init.c
+++ b/arch/s390/oprofile/init.c
@@ -169,7 +169,7 @@ static ssize_t hw_interval_write(struct file *file, char const __user *buf,
if (*offset)
return -EINVAL;
retval = oprofilefs_ulong_from_user(&val, buf, count);
- if (retval)
+ if (retval <= 0)
return retval;
if (val < oprofile_min_interval)
oprofile_hw_interval = oprofile_min_interval;
@@ -212,7 +212,7 @@ static ssize_t hwsampler_zero_write(struct file *file, char const __user *buf,
return -EINVAL;

retval = oprofilefs_ulong_from_user(&val, buf, count);
- if (retval)
+ if (retval <= 0)
return retval;
if (val != 0)
return -EINVAL;
@@ -243,7 +243,7 @@ static ssize_t hwsampler_kernel_write(struct file *file, char const __user *buf,
return -EINVAL;

retval = oprofilefs_ulong_from_user(&val, buf, count);
- if (retval)
+ if (retval <= 0)
return retval;

if (val != 0 && val != 1)
@@ -278,7 +278,7 @@ static ssize_t hwsampler_user_write(struct file *file, char const __user *buf,
return -EINVAL;

retval = oprofilefs_ulong_from_user(&val, buf, count);
- if (retval)
+ if (retval <= 0)
return retval;

if (val != 0 && val != 1)
@@ -317,7 +317,7 @@ static ssize_t timer_enabled_write(struct file *file, char const __user *buf,
return -EINVAL;

retval = oprofilefs_ulong_from_user(&val, buf, count);
- if (retval)
+ if (retval <= 0)
return retval;

if (val != 0 && val != 1)
--
1.7.8.6

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Theodore Ts'o: "Re: Drop support for x86-32"
Previous message: Robert Richter: "[PATCH 2/2] oprofile: Remove 'WQ on CPUx, prefer CPUy' warning"
In reply to: Andi Kleen: "Re: [PATCH 2/2] oprofile: Remove 'WQ on CPUx, prefer CPUy' warning"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]