* [PATCH] ide: don't call memcpy with the same source and destination @ 2017-04-14 18:35 ` Mikulas Patocka 2017-04-18 10:58 ` Bartlomiej Zolnierkiewicz 2017-05-08 21:37 ` David Miller 0 siblings, 2 replies; 3+ messages in thread From: Mikulas Patocka @ 2017-04-14 18:35 UTC (permalink / raw) To: David S. Miller Cc: linux-ide, linux-kernel, James E.J. Bottomley, Helge Deller, John David Anglin, linux-parisc The parisc architecture recently reimplemented the memcpy function and their reimplementation crashed when source and destination overlapped. The crash happened in the function ide_complete_cmd where memcpy is called with the same source and destination pointer. According to the C specification, memcpy behavior is undefined if the source and destination range overlaps. This patches fixes the undefined behavior. Signed-off-by: Mikulas Patocka <mpatocka@redhat.com> --- drivers/ide/ide-io.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) Index: linux-4.11-rc6/drivers/ide/ide-io.c =================================================================== --- linux-4.11-rc6.orig/drivers/ide/ide-io.c +++ linux-4.11-rc6/drivers/ide/ide-io.c @@ -107,7 +107,7 @@ void ide_complete_cmd(ide_drive_t *drive if (cmd->tf_flags & IDE_TFLAG_DYN) kfree(orig_cmd); - else + else if (cmd != orig_cmd) memcpy(orig_cmd, cmd, sizeof(*cmd)); } } ^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [PATCH] ide: don't call memcpy with the same source and destination 2017-04-14 18:35 ` [PATCH] ide: don't call memcpy with the same source and destination Mikulas Patocka @ 2017-04-18 10:58 ` Bartlomiej Zolnierkiewicz 2017-05-08 21:37 ` David Miller 1 sibling, 0 replies; 3+ messages in thread From: Bartlomiej Zolnierkiewicz @ 2017-04-18 10:58 UTC (permalink / raw) To: Mikulas Patocka Cc: David S. Miller, linux-ide, linux-kernel, James E.J. Bottomley, Helge Deller, John David Anglin, linux-parisc On Friday, April 14, 2017 02:35:33 PM Mikulas Patocka wrote: > The parisc architecture recently reimplemented the memcpy function and > their reimplementation crashed when source and destination overlapped. > > The crash happened in the function ide_complete_cmd where memcpy is called > with the same source and destination pointer. According to the C > specification, memcpy behavior is undefined if the source and destination > range overlaps. This patches fixes the undefined behavior. > > Signed-off-by: Mikulas Patocka <mpatocka@redhat.com> Reviewed-by: Bartlomiej Zolnierkiewicz <b.zolnierkie@samsung.com> Best regards, -- Bartlomiej Zolnierkiewicz Samsung R&D Institute Poland Samsung Electronics ^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [PATCH] ide: don't call memcpy with the same source and destination 2017-04-14 18:35 ` [PATCH] ide: don't call memcpy with the same source and destination Mikulas Patocka 2017-04-18 10:58 ` Bartlomiej Zolnierkiewicz @ 2017-05-08 21:37 ` David Miller 1 sibling, 0 replies; 3+ messages in thread From: David Miller @ 2017-05-08 21:37 UTC (permalink / raw) To: mpatocka; +Cc: linux-ide, linux-kernel, jejb, deller, dave.anglin, linux-parisc From: Mikulas Patocka <mpatocka@redhat.com> Date: Fri, 14 Apr 2017 14:35:33 -0400 (EDT) > The parisc architecture recently reimplemented the memcpy function and > their reimplementation crashed when source and destination overlapped. > > The crash happened in the function ide_complete_cmd where memcpy is called > with the same source and destination pointer. According to the C > specification, memcpy behavior is undefined if the source and destination > range overlaps. This patches fixes the undefined behavior. > > Signed-off-by: Mikulas Patocka <mpatocka@redhat.com> Applied. ^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2017-05-08 21:37 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
[not found] <CGME20170418105834epcas1p1b000622da41db1214d1a9a1b888f7896@epcas1p1.samsung.com>
2017-04-14 18:35 ` [PATCH] ide: don't call memcpy with the same source and destination Mikulas Patocka
2017-04-18 10:58 ` Bartlomiej Zolnierkiewicz
2017-05-08 21:37 ` David Miller
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox