From 55c699e098bd0cf2876ddd89862b8d930f8349aa Mon Sep 17 00:00:00 2001 From: Florin Coras Date: Tue, 15 Aug 2023 12:11:50 -0700 Subject: vcl: fix ldp epoll events array overrun Type: fix Signed-off-by: Florin Coras Change-Id: I3dd65946c220f958a4fda0551b053d690bf06c39 --- src/vcl/ldp.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'src') diff --git a/src/vcl/ldp.c b/src/vcl/ldp.c index cc281b0cae8..79e7cf3ee32 100644 --- a/src/vcl/ldp.c +++ b/src/vcl/ldp.c @@ -2681,6 +2681,7 @@ ldp_epoll_pwait_eventfd (int epfd, struct epoll_event *events, timeout = 0; if (rv >= maxevents) goto done; + maxevents -= rv; } else if (PREDICT_FALSE (rv < 0)) { @@ -2693,7 +2694,7 @@ epoll_again: libc_evts = &events[rv]; libc_num_ev = - libc_epoll_pwait (libc_epfd, libc_evts, maxevents - rv, timeout, sigmask); + libc_epoll_pwait (libc_epfd, libc_evts, maxevents, timeout, sigmask); if (libc_num_ev <= 0) { rv = rv >= 0 ? rv : -1; -- cgit 1.2.3-korg