[PATCH] ide: don't call memcpy with the same source and destination

* [PATCH] ide: don't call memcpy with the same source and destination
@ 2017-04-14 18:35 Mikulas Patocka
       [not found] ` <CGME20170418105834epcas1p1b000622da41db1214d1a9a1b888f7896@epcas1p1.samsung.com>
  2017-05-08 21:37 ` David Miller
  0 siblings, 2 replies; 3+ messages in thread
From: Mikulas Patocka @ 2017-04-14 18:35 UTC (permalink / raw)
  To: David S. Miller
  Cc: linux-ide, linux-kernel, James E.J. Bottomley, Helge Deller,
	John David Anglin, linux-parisc

The parisc architecture recently reimplemented the memcpy function and
their reimplementation crashed when source and destination overlapped.

The crash happened in the function ide_complete_cmd where memcpy is called
with the same source and destination pointer. According to the C
specification, memcpy behavior is undefined if the source and destination
range overlaps. This patches fixes the undefined behavior.

Signed-off-by: Mikulas Patocka <mpatocka@redhat.com>

---
 drivers/ide/ide-io.c |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

Index: linux-4.11-rc6/drivers/ide/ide-io.c
===================================================================

--- linux-4.11-rc6.orig/drivers/ide/ide-io.c
+++ linux-4.11-rc6/drivers/ide/ide-io.c
@@ -107,7 +107,7 @@ void ide_complete_cmd(ide_drive_t *drive
 
 		if (cmd->tf_flags & IDE_TFLAG_DYN)
 			kfree(orig_cmd);
-		else
+		else if (cmd != orig_cmd)
 			memcpy(orig_cmd, cmd, sizeof(*cmd));
 	}
 }

^ permalink raw reply	[flat|nested] 3+ messages in thread