Hello This patch series was begun by my finding that memcpy_[to|from]_msg have a parameter len which is an int but used as size_t in whole functions. Without blindly changing the parameter to size_t, I have tried to see if anywhere in linux source code, someone give a negative argument with the following (unfinished) coccinnelle patch. virtual report @@ type T; signed T i; @@ ( memcpy_from_msg | memcpy_to_msg ) (..., - i) + (size_t)i) With that I found many place where int variable is used to store unsigned values and which could be set as size_t since there are used againt size_t and/or given to functions that wait for size_t. It permit also to found a bug in net/llc/af_llc.c where a size_t variable stored error codes. Regards -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html