Received: by 2002:a05:6a10:a841:0:0:0:0 with SMTP id d1csp590275pxy; Wed, 21 Apr 2021 09:59:23 -0700 (PDT) X-Google-Smtp-Source: ABdhPJx3lXKOmIk3XjQFwmqWRUm7oXgGp2l50aX/VSGOCjJBK3SRe5fKbgWkwgfTNhEN2yXw6Gyv X-Received: by 2002:a50:ff13:: with SMTP id a19mr39753128edu.300.1619024363772; Wed, 21 Apr 2021 09:59:23 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1619024363; cv=none; d=google.com; s=arc-20160816; b=h939yWhNlpP7/GBqhHKnDCCuE6c9DODA6NrVAkOfOHsA0FCx2Ry5G1w6S3PCv7dfAM LfmngdTW4vLGfltucZZNFChl7PJ1Ra3GxMkzb7R1iCxMRufZ3a5xL5dzyjQQGrRtfyi2 Sdz+c2NzTHl1BdODXYS22zCSRcr6Fe9a2FmiK6LR8xLQ2gWBgAamgsLa0UBMO/skMDFG XKaJt1GrGyiLuVvz1+41ubFN7dePKXPhs24Zdf8NVprO/CaHMoCkJCQXFzj0JO7aViqF bzRKJHm3nevF1EzyGEgrnwYem+rtcm0sg6oK+MC090Dxf3N3etSNFgS5LRW5FuSri2A3 XNMQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature; bh=6YiU5wh8TDSp9e9aUJYdlhV+ySAYTc1HiNu3XENkrbs=; b=F6XkJ/urneYpJHayq0Cm3kt2rL5zisDNohlMGL+WqWWHihoxqvcWv34m0yhDJFB08t FG4OjfKAMRI1xqMyi2s8ObPKSdi/3X604hlublvis+g9X5enWQgenNSgTdeZVj9uT9/n R3FkWSmsyj+O0IwQRvP6LwK5dtsC6jWx1OnPDSbdizSdMM26k2chiIa7PB44HL8iBFFc YrIMQF4JjxXUeo2cDzG9a4hTfXNdrD5NMitS7Ofm6Ebr3caHxeidrovWtJ8QjacUpKs4 Ztn/iPQcp44WZO9Iq16BsLXh948+SRFMvhXfjOsgDiKF/RetrtjSgxWiY6siE4VoFvIq LrGA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=Wu6v4WFo; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id y35si2583746ede.563.2021.04.21.09.59.01; Wed, 21 Apr 2021 09:59:23 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=Wu6v4WFo; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S242705AbhDUNTg (ORCPT + 99 others); Wed, 21 Apr 2021 09:19:36 -0400 Received: from mail.kernel.org ([198.145.29.99]:53632 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S241050AbhDUNKc (ORCPT ); Wed, 21 Apr 2021 09:10:32 -0400 Received: by mail.kernel.org (Postfix) with ESMTPSA id 482846145E; Wed, 21 Apr 2021 13:09:59 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1619010599; bh=Y672P6BbdL1h7x7HhN95ClrzKujkBDcMO0X0IK2Kaws=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=Wu6v4WFoxNGSUKNfiuLxyPpjVloS2995W02z63F8/kRYLvRXr7hjHeGBPNrNstF8f Ix5TDB7K7thGMbbGoMkCeZQznANbGYr6JXB5Vt4JMeRmnQJpGlPn1KIXcvOO1Bqkpp Gd3nQgvaxNFKSi0u2nJMFejv9rwj+tJrADdV9+SU= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , Wenwen Wang , Hans de Goede Subject: [PATCH 186/190] Revert "virt: vbox: Only copy_from_user the request-header once" Date: Wed, 21 Apr 2021 15:01:01 +0200 Message-Id: <20210421130105.1226686-187-gregkh@linuxfoundation.org> X-Mailer: git-send-email 2.31.1 In-Reply-To: <20210421130105.1226686-1-gregkh@linuxfoundation.org> References: <20210421130105.1226686-1-gregkh@linuxfoundation.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org This reverts commit bd23a7269834dc7c1f93e83535d16ebc44b75eba. Commits from @umn.edu addresses have been found to be submitted in "bad faith" to try to test the kernel community's ability to review "known malicious" changes. The result of these submissions can be found in a paper published at the 42nd IEEE Symposium on Security and Privacy entitled, "Open Source Insecurity: Stealthily Introducing Vulnerabilities via Hypocrite Commits" written by Qiushi Wu (University of Minnesota) and Kangjie Lu (University of Minnesota). Because of this, all submissions from this group must be reverted from the kernel tree and will need to be re-reviewed again to determine if they actually are a valid fix. Until that work is complete, remove this change to ensure that no problems are being introduced into the codebase. Cc: Wenwen Wang Cc: Hans de Goede Cc: Greg Kroah-Hartman Signed-off-by: Greg Kroah-Hartman --- drivers/virt/vboxguest/vboxguest_linux.c | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/drivers/virt/vboxguest/vboxguest_linux.c b/drivers/virt/vboxguest/vboxguest_linux.c index 73eb34849eab..f5cd9cfa1ef6 100644 --- a/drivers/virt/vboxguest/vboxguest_linux.c +++ b/drivers/virt/vboxguest/vboxguest_linux.c @@ -142,9 +142,7 @@ static long vbg_misc_device_ioctl(struct file *filp, unsigned int req, if (!buf) return -ENOMEM; - *((struct vbg_ioctl_hdr *)buf) = hdr; - if (copy_from_user(buf + sizeof(hdr), (void *)arg + sizeof(hdr), - hdr.size_in - sizeof(hdr))) { + if (copy_from_user(buf, (void *)arg, hdr.size_in)) { ret = -EFAULT; goto out; } -- 2.31.1