Hello:
This patch was applied to netdev/net.git (refs/heads/master):
On Thu, 25 Feb 2021 15:26:28 -0800 you wrote:
> From: Arjun Roy <arjun...@google.com>
>
> getsockopt(TCP_ZEROCOPY_RECEIVE) has a bug where we read a
> user-provided "len" field of type signed int, and then compare the
> value to the result of an "offsetofend" operation, which is unsigned.
>
> Negative values provided by the user will be promoted to large
> positive numbers; thus checking that len < offsetofend() will return
> false when the intention was that it return true.
>
> [...]
Here is the summary with links:
- [net] tcp: Fix sign comparison bug in getsockopt(TCP_ZEROCOPY_RECEIVE)
https://git.kernel.org/netdev/net/c/2107d45f17be
You are awesome, thank you!
--
Deet-doot-dot, I am a bot.
https://korg.docs.kernel.org/patchwork/pwbot.html
