On Fri, Apr 5, 2024 at 6:24 PM Luiz Augusto von Dentz <luiz.dentz@xxxxxxxxx> wrote: > ave used this so far (without risking a kernel bug) > > Fair enough, if we don't really have any risk of breaking the API > (would result in using uninitialized memory) then I propose we do > something like this: > > https://gist.github.com/Vudentz/c9092e8a3cb1e7e6a8fd384a51300eee > > That said perhaps copy_from_sockptr shall really take into account > both source and destination lengths so it could incorporate the check > e.g. if (dst_size > src_size) but that might result in changing every > user of copy_from_sockptr thus I left it to be specific to bluetooth. Make sure to return -EINVAL if the user provided length is too small, not -EFAULT.
