From: Olga Kornievskaia <kolga@xxxxxxxxxx>
Input source offset can not be beyond the end of the file.
Signed-off-by: Olga Kornievskaia <kolga@xxxxxxxxxx>
---
fs/nfs/nfs4file.c | 3 +++
1 file changed, 3 insertions(+)
diff --git a/fs/nfs/nfs4file.c b/fs/nfs/nfs4file.c
index 5a73c90..7838bdf 100644
--- a/fs/nfs/nfs4file.c
+++ b/fs/nfs/nfs4file.c
@@ -135,6 +135,9 @@ static ssize_t nfs4_copy_file_range(struct file *file_in, loff_t pos_in,
{
ssize_t ret;
+ if (pos_in >= i_size_read(file_inode(file_in)))
+ return -EINVAL;
+
if (file_inode(file_in)->i_sb != file_inode(file_out)->i_sb)
return -EXDEV;
--
1.8.3.1
