On Wed, Sep 21, 2022 at 10:09:24AM +0100, Adam Guerin wrote: > adf_copy_key_value_data() copies data from userland to kernel, based on > a linked link provided by userland. If userland provides a circular > list (or just a very long one) then it would drive a long loop where > allocation occurs in every loop. This could lead to low memory conditions. > Adding a limit to stop endless loop. > > Signed-off-by: Adam Guerin <adam.guerin@xxxxxxxxx> > Co-developed-by: Ciunas Bennett <ciunas.bennett@xxxxxxxxx> > Signed-off-by: Ciunas Bennett <ciunas.bennett@xxxxxxxxx> > Reviewed-by: Giovanni Cabiddu <giovanni.cabiddu@xxxxxxxxx> > --- > v2: improved patch based off feedback from ML > drivers/crypto/qat/qat_common/adf_ctl_drv.c | 8 ++++++-- > 1 file changed, 6 insertions(+), 2 deletions(-) Patch applied. Thanks. -- Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt