Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1751177AbdFAOFH (ORCPT <rfc822;w@1wt.eu>);
        Thu, 1 Jun 2017 10:05:07 -0400
Received: from mail-by2nam03on0049.outbound.protection.outlook.com ([104.47.42.49]:40289
        "EHLO NAM03-BY2-obe.outbound.protection.outlook.com"
        rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP
        id S1751090AbdFAOFE (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 1 Jun 2017 10:05:04 -0400
Authentication-Results: google.com; dkim=none (message not signed)
 header.d=none;google.com; dmarc=none action=none
 header.from=caviumnetworks.com;
Date: Thu, 1 Jun 2017 17:04:53 +0300
From: Yury Norov <ynorov@caviumnetworks.com>
To: Alexander Potapenko <glider@google.com>
Cc: Dmitriy Vyukov <dvyukov@google.com>,
        Kostya Serebryany <kcc@google.com>, Eric Dumazet <edumazet@google.com>,
        David Miller <davem@davemloft.net>, stephen@networkplumber.org,
        LKML <linux-kernel@vger.kernel.org>,
        Networking <netdev@vger.kernel.org>
Subject: Re: [PATCH v3] net: don't call strlen on non-terminated string in
 dev_set_alias()
Message-ID: <20170601140453.fp7iusjomq65tu6i@yury-thinkpad>
References: <20170601123829.51794-1-glider@google.com>
 <20170601134737.7dp2pbnek26b6kqf@yury-thinkpad>
 <CAG_fn=U0n4Sn4_44e63FjsYPTTDX4ivAbTcuL2s3erFc+g6n2g@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <CAG_fn=U0n4Sn4_44e63FjsYPTTDX4ivAbTcuL2s3erFc+g6n2g@mail.gmail.com>
User-Agent: NeoMutt/20170113 (1.7.2)
X-Originating-IP: [176.59.49.173]
X-ClientProxiedBy: AM5PR0101CA0020.eurprd01.prod.exchangelabs.com
 (10.169.240.30) To CY1PR0701MB1276.namprd07.prod.outlook.com (10.160.149.19)
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: CY1PR0701MB1276:
X-MS-Office365-Filtering-Correlation-Id: c690e05a-35f7-4b88-be47-08d4a8f732f6
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:(22001)(201703131423075)(201703031133081);SRVR:CY1PR0701MB1276;
X-Microsoft-Exchange-Diagnostics: 1;CY1PR0701MB1276;3:MWNqr9yI7nqNazYSptkhFxqJGeS2dUZyzIDv6yQGo4KXuMaOqY+jrihksYKu74atLmA/wmbJD6h8LoKuu3KvP/P4zwDC3ZeTfAmIllqQ7vseNPlOc89gQZBRql04FGwqIqitdxTk8bv+FYB7IVCwafpE+VRLl+DiP9Bul5DLlC0j2ypMzlwEm97nXMe9v5Wacfc8YcIyz9qoiVKALkbWE9Q37NUKGFJ/qh/c7ghMp0CPLFQQ37bX2YVSyFoFR4jilsL03WuF1V/5ilFUNXKhuTqPEJsidCPTgpRYNEUnQrN/WiBFzIEeQTDISgjdc6k+X/VmavHXOo/qZZWce5rtyw==;25:oWD7jH04BcKvaad1uEFKBjGrCR5gGElMnLjdMOTWs49PkOH11MI/3VgW2a5Zd3jaB8M0qoNvUir1aKAsL/lFXbtFJF28gkS5+faI9VOpTAFwBPuwR0puFt9s0KyYhcrZ1qECllekbSu1Y86uFsxooq1EkpbAv02iFKex5ddJV7eDYaYUBdLhB113ivmRHMSsSLX/taIRtKoUvki7N0rezwdLUE+3ivIXElbaZz6jgQPrmkob9wYbJu5Jy0XYHgrN/FGlkfbRiFMJGSzEGT/aDzk8wQurpetBQNR4EWuMwMGHbCqk+lvySugVsoHzi/NNbkrLukWuhJhwFverpmfomNHn7gOXq0JVwTO5Q2rgFZ96Md6EdrF926BCJoqA0G9mfG0o+rMTaMBKE2cIlB5xK28Kt8ykt3g9sYafZw9uCtqdUGLsc1SMxsIpVzir1E6MvdekhUSvtSd7D91bFWyrhe5F71corLS/nR/zGE83ee4=
X-Microsoft-Exchange-Diagnostics: 1;CY1PR0701MB1276;31:AN4o8xRoWyUTrKgI/L7km8hFn6QdEDvoRxZjdlnGFbFUqmvsM9GpvPE5cyJT3r06b920Pte5SC/qs5Q7Wq0r66yEcEw+zKu6MET4VT9F6yhpHhbiCFXnXXbX3lXA/qYyfXtAGrBe8bkPrj8jLCESmjqgUYY9pWVP+fziiuPKSbxo/x+DtmhBYcaz5PciCruSMoVsUiCGc5ISAvKDRHINIUkIf4nXuqGBswD+SEIZ0QIRqfWoKljfq4tpLdjjB51H7lteVf2vbZ+rHTolYG/F/w==;20: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
X-Microsoft-Antispam-PRVS: <CY1PR0701MB127638EAFC8579175EF9317BE3F60@CY1PR0701MB1276.namprd07.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(211936372134217);
X-Exchange-Antispam-Report-CFA-Test: BCL:0;PCL:0;RULEID:(100000700099)(100105000095)(100000701098)(100105300095)(100000702098)(100105100095)(6040450)(601004)(2401047)(8121501046)(5005006)(10201501046)(93006095)(100000703098)(100105400095)(3002001)(6041248)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123555025)(20161123562025)(20161123564025)(20161123558100)(20161123560025)(6072148)(100000704098)(100105200095)(100000705098)(100105500095);SRVR:CY1PR0701MB1276;BCL:0;PCL:0;RULEID:(100000800098)(100110000095)(100000801098)(100110300095)(100000802098)(100110100095)(100000803098)(100110400095)(100000804098)(100110200095)(100000805098)(100110500095);SRVR:CY1PR0701MB1276;
X-Microsoft-Exchange-Diagnostics: =?iso-8859-1?Q?1;CY1PR0701MB1276;4:y0UjIoAwiu/5q5B9ZlVJd49kzwc9g+wSvv5UUH?=
 =?iso-8859-1?Q?i0vKsuTUZxcLUyue4agHr+7SZyqmNL4kogn/esFiw/crzr09nGvFOPeAbC?=
 =?iso-8859-1?Q?82iUSAgj4idLeY2xmk8REmXNFqlFY63dqzkeWvT9qMJYNgIRcjeen2leZo?=
 =?iso-8859-1?Q?Y3Z7r37qA9GSf2ikSbovZw58jojW0/A3DnPwGC6mRp322EKceFWPrjRWA8?=
 =?iso-8859-1?Q?CGXxBaPmNP+NXMZELYtiGFjaDlMU6iLUgba3WOalvVIlZcGuOxQNdqzXgw?=
 =?iso-8859-1?Q?sWVTfttrTpOJWOhrInfzOaZoRsR7hOYHVWOm5wJOVI4lGyWh0eAJ1K3e8J?=
 =?iso-8859-1?Q?T2qMT1D9gGuC3TaNW9FcUfach1PAtOuuQTeVxMa/cE23SJWTPpFQLvTcTX?=
 =?iso-8859-1?Q?vIgJr3s3/mp31WpqB9aBHTL3S2SZFU52SitERg7HPpyKsDxSgA8KZ9vLmJ?=
 =?iso-8859-1?Q?2QAcDmn5E19HkzMzq0T2Y7PZA6pH+ce4BfqYwB4MmBC0r7OEzR1RHbwDMb?=
 =?iso-8859-1?Q?iDiLBEM/Q/O1/PLEAfYYhXK5I9t9rLojJ8wxB2GDXJN9rtqIOCJ2kZDEmz?=
 =?iso-8859-1?Q?BwYgHlTHfUzKHZ9Llxiwu56MHqHcj3ieHdy/nt3zqXFBX8FCnmNwKGPC3F?=
 =?iso-8859-1?Q?33HNFoApTlO7n6K9NXBfMwLFCnq0ZNEz6CMjcMTgLDNCftu0liU2SzHEYt?=
 =?iso-8859-1?Q?fs3ga4d0ulk3isqLFMhigGNtK9FoiE6VGx6QeWUHPUOVFsAeqs5mId7XHz?=
 =?iso-8859-1?Q?7EqGR5bdBIzN/dooQ4yG1ZGUin0u9qAH5Bdd8omeUOgCjl8OlsZugaovMh?=
 =?iso-8859-1?Q?tzeffW7h0n2LvITXENBb38ndWXELICzDnf2iUqxpRJ1ShonaN+CbRUmo5Y?=
 =?iso-8859-1?Q?7lKBGS7E+vxwwXeP9oUi6SQQkKeJBm4PThkii1pC8c4y1P9MtvUi5wKZF3?=
 =?iso-8859-1?Q?UVdmdR/PN7wDz6+BNcKWV8Wke/oRlNFl8xDy7KFJkQnj9OKGfhrms1Kqwi?=
 =?iso-8859-1?Q?noN1mS9Z/YqYh87VRYhf2abUvcoFD+Orju9dHWeWzDjtrAKccu1lNq4qro?=
 =?iso-8859-1?Q?r/I/540HcCozVuduJgD+jQ3Ryxoa3ee+G7A5dbQaUI7V5iFOK+FA1Kri8x?=
 =?iso-8859-1?Q?evElRjGouElG1NjMaWj/4kwYsenhYYHXzxPPnzqx5aY2T/52QgJ4h1r0fg?=
 =?iso-8859-1?Q?V/zOgzSiSC8xDGrkit7bJC1UohKPNHsvlg=3D=3D?=
X-Forefront-PRVS: 0325F6C77B
X-Forefront-Antispam-Report: SFV:NSPM;SFS:(10009020)(4630300001)(6009001)(39850400002)(39450400003)(39400400002)(39840400002)(24454002)(377454003)(189998001)(54906002)(8676002)(4001350100001)(2950100002)(6916009)(42882006)(6666003)(2906002)(33646002)(6496005)(1076002)(6116002)(110136004)(229853002)(3846002)(305945005)(81166006)(23756003)(38730400002)(9686003)(6246003)(33716001)(2870700001)(53936002)(7736002)(42186005)(66066001)(53546009)(47776003)(25786009)(478600001)(76506005)(72206003)(4326008)(83506001)(76176999)(50466002)(50986999)(5660300001)(54356999)(6486002);DIR:OUT;SFP:1101;SCL:1;SRVR:CY1PR0701MB1276;H:localhost;FPR:;SPF:None;MLV:sfv;LANG:en;
X-Microsoft-Exchange-Diagnostics: =?iso-8859-1?Q?1;CY1PR0701MB1276;23:jbNGMfBZW88r5D1J7vYU6Xd/4ph83i/FVkp5U?=
 =?iso-8859-1?Q?RCo3D9sjEgafac1xG0cLOuiBZxz5QFJTJONfmdweAKuHz9aa6ab3F+jrSk?=
 =?iso-8859-1?Q?Qq16lIg1UpHeyKIsgaEROBWt09zCbOKaGWrPpNvlfRMBpTELVZ1JZJMnp4?=
 =?iso-8859-1?Q?FI1cKeoyCBQ26UofuClTc3N/9SGFB7Dze91umCJQB6AXz9Ve3enVZCDgK9?=
 =?iso-8859-1?Q?luK0UVfGRJG6qsV6yBK9jKAGqJ+3EEf034IF73y0ePha7rvTPFefJ271AR?=
 =?iso-8859-1?Q?kiC6lYXGnDdKIU9IiWmOj9FtaZOOk+ybLwPQpyY82lbZgryrWtd7QaL4Bj?=
 =?iso-8859-1?Q?smFURW8dV34fXjzM93rKLH+dZxm0A4UvGzK+2ioeoWdmyfz597Bszs85Z8?=
 =?iso-8859-1?Q?w56TCPtnKzLlCZ7H8H4sJH5F6m6+j4hFMvRksXlD2+g+YERsMQjZ7TFYrL?=
 =?iso-8859-1?Q?tKUuTXpptxPzLmjBlk4t6nxEex4VAe1+IazxkoK1ZkWMQNDa0VIBDVYmRI?=
 =?iso-8859-1?Q?TYD4fLE6Sqo+0PQ6CTOWSvNzDrQ0seUyirs7TDbzuTZDItQPBL3ufAdCx4?=
 =?iso-8859-1?Q?PqOs4YbrYvPmJtbHWC1I6PVtXBwRLZEt3c7Oa8UFh0QX3AnyqYxxsqz17R?=
 =?iso-8859-1?Q?Y0ETevwi0e0yZr4kMJtp+xl2WQkJ+1p/O0o9g++qrZGuCa7t6MTKKV3uTj?=
 =?iso-8859-1?Q?JrgRh1ksSlRz5Zz3jkopvpv+YlXqCSqSAWFi+yzYlWphVrMYW1OEAJ6qZf?=
 =?iso-8859-1?Q?jrFFJ+kfdkN5Wymads1Z58+iqsRtf+zsVfqfck/Hf+sjOefFqbHNSdSz0T?=
 =?iso-8859-1?Q?fGAvCpvU8Lk8EfodeZOzG5a5l3m6s9C3bawmn6u0xUrafAl8/kW9/9DvBS?=
 =?iso-8859-1?Q?OJe3JJfiUloQ8WgYRyGupO5NE7FgyhCWcUcZr53JNDYIo+RBCtCpQ5C/b0?=
 =?iso-8859-1?Q?ndIYgi4/Hjo1JqlBe1gm5jTTZOU6CIgfiXhUVfXi6W1xMlZc5fa8tkK98P?=
 =?iso-8859-1?Q?AAbVx8ifOTmrKocmXuzaB7M+bQYpU0VEPRxbkgivPfhNsxWsWdIt3s7P4F?=
 =?iso-8859-1?Q?EucGz0oopRVjl5j1iuuNwkeAGmK3YiKyl0dld2rHX1IHJ3O9jw/TI4tkZN?=
 =?iso-8859-1?Q?4HMZlq91HQiDjEIZiRaQ11lFwzOw9JI9yKdz3Rc6/H4D4r38wqjGCFTcAl?=
 =?iso-8859-1?Q?h0EkPsM4d82C2E3hre/SnsV7QB33KlctvSZerm79DFxExjHCQRTfL8jdY7?=
 =?iso-8859-1?Q?AXJbkcsQwOr12WEc9GkfYAxKI9wgMyBlaI0D6trng=3D=3D?=
X-Microsoft-Exchange-Diagnostics: 1;CY1PR0701MB1276;6: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
X-Microsoft-Exchange-Diagnostics: 1;CY1PR0701MB1276;5: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;24:ah7F/dsnpFEMF/bqGoUyUPoaDeGaeWfFq5ZUtPU0HodHfOh8HEQfZC12tqHxPtruZ1I50mdtwdd+Wi7HlW3VwcVosBkFH7FF0dd7rRans/Q=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1;CY1PR0701MB1276;7:EIF4Nl88MOX3GnYledswrt0ds8bX3X+edzBjnf8/LnNSYOTkAXCVHjrl3jmwAsePhCTv/UlKYSMHxtXWIeAcMVkVpQjCM8bagkkaJV7l6kjhHp9vCKpKO0wwKPYdW+BQK4NBPBFDir1biql0j4noJrCYP1oIJPZwd/4OG9boHqcSuKmmvADuFVMtmxwOw4ukIzyByxJ96UjQievZ6cQ8H2o65YyjhKB5B3fGxFBR7gkLuj0ZUd8jl2YDiZCAiHAoGfrWEFTQ3wgC3Lvpp5/c0iKIELZDAZbc0Nj3NGyuRpPjCxNMDkUotvBhohqR1gNCxnCfR5WX4II2gzseZHuJoQ==
X-OriginatorOrg: caviumnetworks.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 01 Jun 2017 14:05:02.5408 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR0701MB1276
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Content-Length: 2268
Lines: 67

On Thu, Jun 01, 2017 at 03:50:33PM +0200, Alexander Potapenko wrote:
> On Thu, Jun 1, 2017 at 3:47 PM, Yury Norov <ynorov@caviumnetworks.com> wrote:
> > On Thu, Jun 01, 2017 at 02:38:29PM +0200, Alexander Potapenko wrote:
> >> KMSAN reported a use of uninitialized memory in dev_set_alias(),
> >> which was caused by calling strlcpy() (which in turn called strlen())
> >> on the user-supplied non-terminated string.
> >>
> >> Signed-off-by: Alexander Potapenko <glider@google.com>
> >> ---
> >> v3: removed the multi-line comment
> >> v2: fixed an off-by-one error spotted by Dmitry Vyukov
> >
> > [...]
> >
> >> ---
> >>  net/core/dev.c | 4 +++-
> >>  1 file changed, 3 insertions(+), 1 deletion(-)
> >>
> >> diff --git a/net/core/dev.c b/net/core/dev.c
> >> index fca407b4a6ea..3e3b29133cc9 100644
> >> --- a/net/core/dev.c
> >> +++ b/net/core/dev.c
> >> @@ -1254,7 +1254,9 @@ int dev_set_alias(struct net_device *dev, const char *alias, size_t len)
> >>               return -ENOMEM;
> >>       dev->ifalias = new_ifalias;
> >>
> >> -     strlcpy(dev->ifalias, alias, len+1);
> >> +     /* alias comes from the userspace and may not be zero-terminated. */
> >
> > So if the comment is correct, you'd use copy_from_user() instead.
> Well, the contents of |alias| have been previously copied from the
> userspace, but this is a pointer to a kernel buffer, as the function
> prototype tells.
> Do you think a confusion is possible here?

Yes, I think so... If pointer comes from userspace, it normally points to
userspace data. If you have the data already copied, just say:
+     /* alias may not be zero-terminated. */

Or say nothing, because at the first glance, using the strlcpy()
instead of simple memcpy() looks weird in this case - you know the
length of the string from the beginning, and should not recalculate it
again.

Yury

> >> +     memcpy(dev->ifalias, alias, len);
> >> +     dev->ifalias[len] = 0;
> >>       return len;
> >>  }
> >>
> >> --
> >> 2.13.0.219.gdb65acc882-goog
> 
> 
> 
> -- 
> Alexander Potapenko
> Software Engineer
> 
> Google Germany GmbH
> Erika-Mann-Stra?e, 33
> 80636 M?nchen
> 
> Gesch?ftsf?hrer: Matthew Scott Sucherman, Paul Terence Manicle
> Registergericht und -nummer: Hamburg, HRB 86891
> Sitz der Gesellschaft: Hamburg