mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git
synced 2025-01-01 10:42:11 +00:00
io_uring: cqe init hardening
io_kiocb::cqe stores the completion info which we'll memcpy to userspace, and we rely on callbacks and other later steps to populate it with right values. We have never had problems with that, but it would still be safer to zero it on allocation. Signed-off-by: Pavel Begunkov <asml.silence@gmail.com> Link: https://lore.kernel.org/r/b16a3b64dde678686460d3c3792c3ba6d3d1bc7a.1692916914.git.asml.silence@gmail.com Signed-off-by: Jens Axboe <axboe@kernel.dk>
This commit is contained in:
parent
a0727c7383
commit
31d3ba924f
@ -1056,7 +1056,7 @@ static void io_preinit_req(struct io_kiocb *req, struct io_ring_ctx *ctx)
|
|||||||
req->link = NULL;
|
req->link = NULL;
|
||||||
req->async_data = NULL;
|
req->async_data = NULL;
|
||||||
/* not necessary, but safer to zero */
|
/* not necessary, but safer to zero */
|
||||||
req->cqe.res = 0;
|
memset(&req->cqe, 0, sizeof(req->cqe));
|
||||||
}
|
}
|
||||||
|
|
||||||
static void io_flush_cached_locked_reqs(struct io_ring_ctx *ctx,
|
static void io_flush_cached_locked_reqs(struct io_ring_ctx *ctx,
|
||||||
|
Loading…
Reference in New Issue
Block a user