1 files changed, 9 insertions, 17 deletions
diff --git a/kernel/module.c b/kernel/module.c
index 0e2da8695f8e..6085f5ef88ea 100644
--- a/kernel/module.c
+++ b/kernel/module.c
@@ -2421,25 +2421,17 @@ static inline void kmemleak_load_module(const struct module *mod,
 #ifdef CONFIG_MODULE_SIG
 static int module_sig_check(struct load_info *info,
-                            const void *mod, unsigned long *len)
+                            const void *mod, unsigned long *_len)
 {
        int err = -ENOKEY;
-        const unsigned long markerlen = sizeof(MODULE_SIG_STRING) - 1;
+        unsigned long markerlen = sizeof(MODULE_SIG_STRING) - 1;
-        const void *p = mod, *end = mod + *len;
+        unsigned long len = *_len;
-        /* Poor man's memmem. */
+        if (len > markerlen &&
-        while ((p = memchr(p, MODULE_SIG_STRING[0], end - p))) {
+            memcmp(mod + len - markerlen, MODULE_SIG_STRING, markerlen) == 0) {
-                if (p + markerlen > end)
+                /* We truncate the module to discard the signature */
-                        break;
+                *_len -= markerlen;
+                err = mod_verify_sig(mod, _len);
-                if (memcmp(p, MODULE_SIG_STRING, markerlen) == 0) {
-                        const void *sig = p + markerlen;
-                        /* Truncate module up to signature. */
-                        *len = p - mod;
-                        err = mod_verify_sig(mod, *len, sig, end - sig);
-                        break;
-                }
-                p++;
        }
        if (!err) {

diff --git a/kernel/module.c b/kernel/module.c index 0e2da8695f8e..6085f5ef88ea 100644 --- a/kernel/module.c +++ b/kernel/module.c
@@ -2421,25 +2421,17 @@ static inline void kmemleak_load_module(const struct module *mod,
2421		2421
2422	#ifdef CONFIG_MODULE_SIG	2422	#ifdef CONFIG_MODULE_SIG
2423	static int module_sig_check(struct load_info *info,	2423	static int module_sig_check(struct load_info *info,
2424	const void mod, unsigned long len)	2424	const void mod, unsigned long _len)
2425	{	2425	{
2426	int err = -ENOKEY;	2426	int err = -ENOKEY;
2427	const unsigned long markerlen = sizeof(MODULE_SIG_STRING) - 1;	2427	unsigned long markerlen = sizeof(MODULE_SIG_STRING) - 1;
2428	const void p = mod, end = mod + *len;	2428	unsigned long len = *_len;
2429		2429
2430	/* Poor man's memmem. */	2430	if (len > markerlen &&
2431	while ((p = memchr(p, MODULE_SIG_STRING[0], end - p))) {	2431	memcmp(mod + len - markerlen, MODULE_SIG_STRING, markerlen) == 0) {
2432	if (p + markerlen > end)	2432	/* We truncate the module to discard the signature */
2433	break;	2433	*_len -= markerlen;
2434		2434	err = mod_verify_sig(mod, _len);
2435	if (memcmp(p, MODULE_SIG_STRING, markerlen) == 0) {
2436	const void *sig = p + markerlen;
2437	/* Truncate module up to signature. */
2438	*len = p - mod;
2439	err = mod_verify_sig(mod, *len, sig, end - sig);
2440	break;
2441	}
2442	p++;
2443	}	2435	}
2444		2436
2445	if (!err) {	2437	if (!err) {