From: Herbert Xu <herbert@gondor.apana.org.au>
Date: Tue, 30 Nov 2010 08:49:02 +0000 (+0800)
Subject: crypto: algif_skcipher - Fixed overflow when sndbuf is page aligned
X-Git-Tag: v2.6.38-rc1~238^2~23
X-Git-Url: http://git.openpandora.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=0f6bb83cb12e4617e696ffa566f3fc6c092686e2;p=pandora-kernel.git

crypto: algif_skcipher - Fixed overflow when sndbuf is page aligned

When sk_sndbuf is not a multiple of PAGE_SIZE, the limit tests
in sendmsg fail as the limit variable becomes negative and we're
using an unsigned comparison.

The same thing can happen if sk_sndbuf is lowered after a sendmsg
call.

This patch fixes this by always taking the signed maximum of limit
and 0 before we perform the comparison.

It also rounds the value of sk_sndbuf down to a multiple of PAGE_SIZE
so that we don't end up allocating a page only to use a small number
of bytes in it because we're bound by sk_sndbuf.

Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
---

Reading git-diff-tree failed