ptr_ring: use kmalloc_array() - kernel - saturneric's kernel source tree

diff options

author	Eric Dumazet <[email protected]>	2017-08-16 17:36:47 +0000
committer	David S. Miller <[email protected]>	2017-08-16 23:28:47 +0000
commit	81fbfe8adaf38d4f5a98c19bebfd41c5d6acaee8 (patch)
tree	d6b6fc17c19f0df3e916e55726dee279c055deb6 /net/unix/af_unix.c
parent	dccp: defer ccid_hc_tx_delete() at dismantle time (diff)
download	kernel-81fbfe8adaf38d4f5a98c19bebfd41c5d6acaee8.tar.gz kernel-81fbfe8adaf38d4f5a98c19bebfd41c5d6acaee8.zip

ptr_ring: use kmalloc_array()

As found by syzkaller, malicious users can set whatever tx_queue_len on a tun device and eventually crash the kernel. Lets remove the ALIGN(XXX, SMP_CACHE_BYTES) thing since a small ring buffer is not fast anyway. Fixes: 2e0ab8ca83c1 ("ptr_ring: array based FIFO for pointers") Signed-off-by: Eric Dumazet <[email protected]> Reported-by: Dmitry Vyukov <[email protected]> Cc: Michael S. Tsirkin <[email protected]> Cc: Jason Wang <[email protected]> Signed-off-by: David S. Miller <[email protected]>

Diffstat (limited to 'net/unix/af_unix.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: