On Thu, Sep 27, 2012 at 12:19:34AM +0400, Cyrill Gorcunov wrote: > On Wed, Sep 26, 2012 at 01:05:58PM -0700, Andrew Morton wrote: > > > - if (!access_ok(VERIFY_READ, addr, sizeof(addr)) || addr < mmap_min_addr) > > > + if (!access_ok(VERIFY_READ, (void *)addr, sizeof(addr)) || addr < mmap_min_addr) > > > return -EINVAL; > > > > > > error = -EINVAL; > > > > It should have the __user tag as well, methinks? > > > > --- a/kernel/sys.c~prctl-use-access_ok-instead-of-task_size-in-prctl_set_mm-fix-fix > > +++ a/kernel/sys.c > > @@ -1865,7 +1865,8 @@ static int prctl_set_mm(int opt, unsigne > > if (opt == PR_SET_MM_EXE_FILE) > > return prctl_set_mm_exe_file(mm, (unsigned int)addr); > > > > - if (!access_ok(VERIFY_READ, (void *)addr, sizeof(addr)) || addr < mmap_min_addr) > > + if (!access_ok(VERIFY_READ, (void __user *)addr, sizeof(addr)) || I would have expected sizeof(*addr) except addr is unsigned long. To me sizeof(unsigned long) would be clearer. regards, dan carpenter -- To unsubscribe from this list: send the line "unsubscribe kernel-janitors" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
