linux-next: manual merge of the security tree with Linus' tree

From: Stephen Rothwell
Date: Sun Feb 03 2013 - 22:06:56 EST

Next message: Li, Fei: "RE: [PATCH V4] suspend: enable freeze timeout configuration throughsys"
Previous message: Al Viro: "Re: [PATCH] arch: avr32: add dummy syscalls"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi James,

Today's linux-next merge of the security tree got a conflict in
lib/digsig.c between commit 7810cc1e7721 ("digsig: Fix memory leakage in
digsig_verify_rsa()") from Linus' tree and commit 26d438457ed1 ("digsig:
remove unnecessary memory allocation and copying") from the security tree.

I fixed it up (see below) and can carry the fix as necessary (no action
is required).

--
Cheers,
Stephen Rothwell sfr@xxxxxxxxxxxxxxxx

diff --cc lib/digsig.c
index dc2be7e,0103c5b..0000000
--- a/lib/digsig.c
+++ b/lib/digsig.c
@@@ -162,13 -152,9 +152,11 @@@ static int digsig_verify_rsa(struct ke
memset(out1, 0, head);
memcpy(out1 + head, p, l);

+ kfree(p);
+
- err = pkcs_1_v1_5_decode_emsa(out1, len, mblen, out2, &len);
- if (err)
- goto err;
+ m = pkcs_1_v1_5_decode_emsa(out1, len, mblen, &len);

- if (len != hlen || memcmp(out2, h, hlen))
+ if (!m || len != hlen || memcmp(m, h, hlen))
err = -EINVAL;

err:

Attachment: pgp00000.pgp
Description: PGP signature

Next message: Li, Fei: "RE: [PATCH V4] suspend: enable freeze timeout configuration throughsys"
Previous message: Al Viro: "Re: [PATCH] arch: avr32: add dummy syscalls"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]