crypto: algif - suppress sending source address information in recvmsg The current code does not set the msg_namelen member to 0 and therefore makes net/socket.c leak the local sockaddr_storage variable to userland -- 128 bytes of kernel stack memory. Fix that. Cc: <stable@vger.kernel.org> # 2.6.38 Signed-off-by: Mathias Krause <minipli@googlemail.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>

commit: 72a763d805a48ac8c0bf48fdb510e84c12de51fe [log] [tgz]
author: Mathias Krause <minipli@googlemail.com> Sun Apr 07 14:05:39 2013 +0200
committer: Herbert Xu <herbert@gondor.apana.org.au> Wed Apr 10 14:26:06 2013 +0800
tree: d22376e4d8affa74254584f155245df212cf0556
parent: d47cbd5bcee7c7a08fc0283dda465375fa1b1fda [diff] [blame]
diff --git a/crypto/algif_skcipher.c b/crypto/algif_skcipher.c
index 6a6dfc0..a1c4f0a 100644
--- a/crypto/algif_skcipher.c
+++ b/crypto/algif_skcipher.c

@@ -432,6 +432,7 @@
 	long copied = 0;
 
 	lock_sock(sk);
+	msg->msg_namelen = 0;
 	for (iov = msg->msg_iov, iovlen = msg->msg_iovlen; iovlen > 0;
 	     iovlen--, iov++) {
 		unsigned long seglen = iov->iov_len;
commit	72a763d805a48ac8c0bf48fdb510e84c12de51fe	[log] [tgz]
author	Mathias Krause <minipli@googlemail.com>	Sun Apr 07 14:05:39 2013 +0200
committer	Herbert Xu <herbert@gondor.apana.org.au>	Wed Apr 10 14:26:06 2013 +0800
tree	d22376e4d8affa74254584f155245df212cf0556
parent	d47cbd5bcee7c7a08fc0283dda465375fa1b1fda [diff] [blame]