Merge tag 'kvm-arm-for-4.5-1' of git://git.kernel.org/pub/scm/linux/kernel/git/kvmarm/kvmarm into kvm-next

KVM/ARM changes for Linux v4.5 - Complete rewrite of the arm64 world switch in C, hopefully paving the way for more sharing with the 32bit code, better maintainability and easier integration of new features. Also smaller and slightly faster in some cases... - Support for 16bit VM identifiers - Various cleanups
author: Paolo Bonzini <pbonzini@redhat.com> 2016-01-07 11:00:57 +0100
committer: Paolo Bonzini <pbonzini@redhat.com> 2016-01-07 11:00:57 +0100
commit: def840ede34ea1fa47494c62fba06479af2abbc1 (patch)
tree: 89c0dff153508be35ddabb246d96ee8f08d3e90e /security/keys/trusted.c
parent: 774926641d1968a4839da3a6ac79d914742aac2f (diff)
parent: c7da6fa43cb1c5e649da0f478a491feb9208cae7 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/security/keys/trusted.c b/security/keys/trusted.c
index 903dace648a1..16dec53184b6 100644
--- a/security/keys/trusted.c
+++ b/security/keys/trusted.c
@@ -1007,13 +1007,16 @@ static void trusted_rcu_free(struct rcu_head *rcu)
  */
 static int trusted_update(struct key *key, struct key_preparsed_payload *prep)
 {
-	struct trusted_key_payload *p = key->payload.data[0];
+	struct trusted_key_payload *p;
 	struct trusted_key_payload *new_p;
 	struct trusted_key_options *new_o;
 	size_t datalen = prep->datalen;
 	char *datablob;
 	int ret = 0;
 
+	if (test_bit(KEY_FLAG_NEGATIVE, &key->flags))
+		return -ENOKEY;
+	p = key->payload.data[0];
 	if (!p->migratable)
 		return -EPERM;
 	if (datalen <= 0 || datalen > 32767 || !prep->data)
author	Paolo Bonzini <pbonzini@redhat.com>	2016-01-07 11:00:57 +0100
committer	Paolo Bonzini <pbonzini@redhat.com>	2016-01-07 11:00:57 +0100
commit	def840ede34ea1fa47494c62fba06479af2abbc1 (patch)
tree	89c0dff153508be35ddabb246d96ee8f08d3e90e /security/keys/trusted.c
parent	774926641d1968a4839da3a6ac79d914742aac2f (diff)
parent	c7da6fa43cb1c5e649da0f478a491feb9208cae7 (diff)