Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / kernel / common / 912d16a2d730b98b8c9099a2d934dfc691a0a9c2
commit912d16a2d730b98b8c9099a2d934dfc691a0a9c2[log] [tgz]
authorMimi Zohar <zohar@linux.ibm.com>Mon Apr 26 18:13:45 2021 -0400
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Wed Jul 14 16:56:04 2021 +0200
tree04b0fb3ec754f19cec056ae18b4c9d395d292693
parent403577f75d5c433d056a67e61a042cb5ca86c730 [diff]
evm: fix writing <securityfs>/evm overflow

[ Upstream commit 49219d9b8785ba712575c40e48ce0f7461254626 ]

EVM_SETUP_COMPLETE is defined as 0x80000000, which is larger than INT_MAX.
The "-fno-strict-overflow" compiler option properly prevents signaling
EVM that the EVM policy setup is complete.  Define and read an unsigned
int.

Fixes: f00d79750712 ("EVM: Allow userspace to signal an RSA key has been loaded")
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
1 file changed
tree: 04b0fb3ec754f19cec056ae18b4c9d395d292693
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. LICENSES/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .clang-format
  24. .cocciconfig
  25. .get_maintainer.ignore
  26. .gitattributes
  27. .gitignore
  28. .mailmap
  29. COPYING
  30. CREDITS
  31. Kbuild
  32. Kconfig
  33. MAINTAINERS
  34. Makefile
  35. README