projects
/
linux-2.6-microblaze.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
| inline |
side by side
KEYS: DH: validate __spare field
[linux-2.6-microblaze.git]
/
security
/
keys
/
dh.c
diff --git
a/security/keys/dh.c
b/security/keys/dh.c
index
4755d4b
..
d1ea9f3
100644
(file)
--- a/
security/keys/dh.c
+++ b/
security/keys/dh.c
@@
-266,6
+266,11
@@
long __keyctl_dh_compute(struct keyctl_dh_params __user *params,
if (kdfcopy) {
char *hashname;
+ if (memchr_inv(kdfcopy->__spare, 0, sizeof(kdfcopy->__spare))) {
+ ret = -EINVAL;
+ goto out1;
+ }
+
if (buflen > KEYCTL_KDF_MAX_OUTPUT_LEN ||
kdfcopy->otherinfolen > KEYCTL_KDF_MAX_OI_LEN) {
ret = -EMSGSIZE;