xf86: fix flush input to work with Linux evdev devices.

So when we VT switch back and attempt to flush the input devices, we don't succeed because evdev won't return part of an event, since we were only asking for 4 bytes, we'd only get -EINVAL back. This could later cause events to be flushed that we shouldn't have gotten. This is a fix for CVE-2013-1940. Signed-off-by: Dave Airlie <airlied@redhat.com> Reviewed-by: Peter Hutterer <peter.hutterer@who-t.net> Signed-off-by: Peter Hutterer <peter.hutterer@who-t.net> (cherry picked from commit 6ca03b9161d33b1d2b55a3a1a913cf88deb2343f)
author: Dave Airlie <airlied@gmail.com> 2013-04-10 16:09:01 +1000
committer: Peter Hutterer <peter.hutterer@who-t.net> 2013-04-17 16:08:15 +1000
commit: aac2d9d09c73fa2b9d02d8446718aa6ccd7e894a (patch)
tree: 8685e703921e6994cbe29bd81b3e43ea33c181ff
parent: 2eec013569f6daa952482ac5d9db8acc71fe01aa (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/hw/xfree86/os-support/shared/posix_tty.c b/hw/xfree86/os-support/shared/posix_tty.c
index ab3757a2a..4d08c1e85 100644
--- a/hw/xfree86/os-support/shared/posix_tty.c
+++ b/hw/xfree86/os-support/shared/posix_tty.c
@@ -421,7 +421,8 @@ xf86FlushInput(int fd)
 {
     fd_set fds;
     struct timeval timeout;
-    char c[4];
+    /* this needs to be big enough to flush an evdev event. */
+    char c[256];
 
     DebugF("FlushingSerial\n");
     if (tcflush(fd, TCIFLUSH) == 0)
author	Dave Airlie <airlied@gmail.com>	2013-04-10 16:09:01 +1000
committer	Peter Hutterer <peter.hutterer@who-t.net>	2013-04-17 16:08:15 +1000
commit	aac2d9d09c73fa2b9d02d8446718aa6ccd7e894a (patch)
tree	8685e703921e6994cbe29bd81b3e43ea33c181ff
parent	2eec013569f6daa952482ac5d9db8acc71fe01aa (diff)