Return-Path: Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S932805Ab0DHPrK (ORCPT ); Thu, 8 Apr 2010 11:47:10 -0400 Received: from smtp1.linux-foundation.org ([140.211.169.13]:50537 "EHLO smtp1.linux-foundation.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1757214Ab0DHPrG (ORCPT ); Thu, 8 Apr 2010 11:47:06 -0400 Date: Thu, 8 Apr 2010 08:42:38 -0700 (PDT) From: Linus Torvalds To: Ingo Molnar cc: linux-kernel@vger.kernel.org, Peter Zijlstra , Mike Galbraith , Thomas Gleixner , Andrew Morton Subject: Re: [GIT PULL] scheduler fix In-Reply-To: <20100408153854.GA5055@elte.hu> Message-ID: References: <20100408153854.GA5055@elte.hu> User-Agent: Alpine 2.00 (LFD 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Content-Length: 930 Lines: 26 On Thu, 8 Apr 2010, Ingo Molnar wrote: > > - if (len < nr_cpu_ids) > + if ((len * BITS_PER_BYTE) < nr_cpu_ids) > return -EINVAL; Not that it really matters, but this will now fail for no good reason if you pass it a half-gigabyte area due to overflow. Of course, if you pass it a half gig memory array, you're a f*cking moron to begin with, so I don't think anybody really _cares_. But in general, when checking system call arguments, I'd like people to think about overflow issues more. In this case it doesn't matter, and overflow just makes the test more conservative than they need to be, but when it _does_ matter it often ends up being a security issue. Linus -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/