From: Dan Carpenter <dan.carpenter@xxxxxxxxxx> Date: Fri, 28 Sep 2012 11:21:19 +0300 > Because sizeof() is size_t then if "len" is negative, it counts as a > large positive value. > > The call tree looks like: > pfkey_sendmsg() > -> pfkey_process() > -> pfkey_spdadd() > -> parse_ipsecrequests() > > Signed-off-by: Dan Carpenter <dan.carpenter@xxxxxxxxxx> > --- > This is a static checker fix. I'm not very familiar with this code. > I think if we were to hit this then we would try to parse invalid data > and it would return -EINVAL or similar error code pretty quickly. Applied and queued up for -stable, thanks Dan. -- To unsubscribe from this list: send the line "unsubscribe kernel-janitors" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
