Received: by 2002:a05:6a10:f347:0:0:0:0 with SMTP id d7csp685323pxu;
        Wed, 6 Jan 2021 01:19:25 -0800 (PST)
X-Google-Smtp-Source: ABdhPJyowOEQW31Bigfe7dX+FhWstHxLTTDYX5vl/gRpDebLreeYi6wYJtcZno3DhYUseTFWTfcJ
X-Received: by 2002:a17:906:6c8b:: with SMTP id s11mr2198158ejr.187.1609924765366;
        Wed, 06 Jan 2021 01:19:25 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1609924765; cv=none;
        d=google.com; s=arc-20160816;
        b=I92y0L0+p5e4eAbwd1f+ih6oZMCO0LMpB78IIYzJWRVw3FlBhu8mBVTcqTs4LF9VdO
         iqecENs7lNcI3AEpsI/ptBodAQ+D4fiSbp76s5Rwm2xTMk5drFvFe0VHI5+ctRLLAeKK
         FUh9xGoAIncDKI5Cdy0/4BnuLTj7sen9gdvIDCi51tbAPsP9UhXq3CherkLHuF6MX0LU
         ifUjw6fTjUcRRGDZyVHGDh2DfXBB6uTyR3q6zFjlXZbkb34t55K3/pJZ/0oJkxbZQzLK
         YL7ktK7HYkReQ/Iaaar5+mnpxgnM7ePwMYLeZAfmYeuMuEM4ibVpEJ30RDhjwzArJfJe
         8/JA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:content-language
         :in-reply-to:mime-version:user-agent:date:message-id:from:references
         :cc:to:subject:dkim-signature;
        bh=+uJpEF7Uk5EUUiqpyeX/cKe3mpeFZj5IKRx2fug0EYI=;
        b=Rdk58y4PbB4vtQpDNcN2T+92cn7AbIt381Y2jWBNprAn/ascjBzepM/S3JTAUcWqzQ
         3Seu8YKHmtLUsbm2mD79MKvY+6sVAEz1b7gT7pdfcNgRWB7yQwBDGRqDDzdyiXD4q6SD
         l0yh5ixYK2ZQnc/tVTi3l+5j6T7WpEHywqZe9B29KcnfYP9CiIWFqNar6apPoNVomUth
         Q7Kndw6Hl0MuQG6e+te1jsuRMmsIned2wo4Nvpzyl6JbEIBk7N1jXG1NZsRZvWQdNwOK
         J42a1I/S17+8ZWAUxjR7pCkxwBnzpSLxhMTY5g7YWrRRT/+Nn7gatadx/sBKS+0ytDpQ
         Xd+w==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=ikD7rwC9;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id y11si761085edp.516.2021.01.06.01.19.01;
        Wed, 06 Jan 2021 01:19:25 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=ikD7rwC9;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1725941AbhAFJPx (ORCPT
        <rfc822;linuxmailingsubscription@gmail.com> + 99 others);
        Wed, 6 Jan 2021 04:15:53 -0500
Received: from us-smtp-delivery-124.mimecast.com ([216.205.24.124]:55839 "EHLO
        us-smtp-delivery-124.mimecast.com" rhost-flags-OK-OK-OK-OK)
        by vger.kernel.org with ESMTP id S1725877AbhAFJPw (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 6 Jan 2021 04:15:52 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
        s=mimecast20190719; t=1609924465;
        h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
         to:to:cc:cc:mime-version:mime-version:content-type:content-type:
         content-transfer-encoding:content-transfer-encoding:
         in-reply-to:in-reply-to:references:references;
        bh=+uJpEF7Uk5EUUiqpyeX/cKe3mpeFZj5IKRx2fug0EYI=;
        b=ikD7rwC9/E5sgKaDy+t9MfgS+yye4RBBnknOn0KVz+PyvU407X8pmzZmzq9xZQAhHz571z
        DzFYuU9JB2hFHOf/WiSwv+S9jyKrtZol4JyuSkYFEN9jZyGl3xSRogOBDhT0fgsV1/7az1
        Lo9Ko4Y7cybLRIsaZLY6agvLidTpXlc=
Received: from mail-ej1-f70.google.com (mail-ej1-f70.google.com
 [209.85.218.70]) (Using TLS) by relay.mimecast.com with ESMTP id
 us-mta-405-2CdHFgDkOZGAWHX_xqgsDQ-1; Wed, 06 Jan 2021 04:14:23 -0500
X-MC-Unique: 2CdHFgDkOZGAWHX_xqgsDQ-1
Received: by mail-ej1-f70.google.com with SMTP id he8so1050408ejc.4
        for <linux-kernel@vger.kernel.org>; Wed, 06 Jan 2021 01:14:23 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:subject:to:cc:references:from:message-id:date
         :user-agent:mime-version:in-reply-to:content-language
         :content-transfer-encoding;
        bh=+uJpEF7Uk5EUUiqpyeX/cKe3mpeFZj5IKRx2fug0EYI=;
        b=pCn/Hm4YMXhqRYMdqBndgyCGhEr+v7yFAh/7LeLUMb0/tT47M7vjjiTMN1mVbRWF0w
         IVSJ80LAfLC4ixm+XDOM1s7a/4cY4qp068UYeCXzbqB5uHfZEuCjlcFm9k1BvUJAPdn0
         kd1jTip+iAFdJH7ezhd5URnLHimsJcmFJWbLXiEOU78t00cHUzDMQ8dk9s/ESrgIMjqw
         /1y3jW+JeeqNy8CM5xPZpdg7yDfsZXCNOmJeOqozTfKuphktANZJYZFjrElzcfFNTnyI
         S4Aybm/dhcaqRX3dXUSkmj6BN98YrHYs4xVhGrdH2pyqdS+TtG18UEGEa/enESX3hLCw
         enNQ==
X-Gm-Message-State: AOAM532Xj5njyFnUom4xnYRhasaG3SVAqNHcXPzmxjq67mFoEXLn2tUE
        L0YTpyXO3niN4do9Btu4hDT7tdm3lLBbqk+3Oe0m7lzVNoSe5RO4ND4vJsbPY3iq564Du6HPy37
        CLHLxDzVriDyOS09TzGlNllQ+r7kCwUh7M5zw+3Peon7dUD4L/loApmWcscum4Gr15i+eYEuqLY
        Zf
X-Received: by 2002:a05:6402:7d7:: with SMTP id u23mr3222598edy.325.1609924462299;
        Wed, 06 Jan 2021 01:14:22 -0800 (PST)
X-Received: by 2002:a05:6402:7d7:: with SMTP id u23mr3222586edy.325.1609924462082;
        Wed, 06 Jan 2021 01:14:22 -0800 (PST)
Received: from x1.localdomain (2001-1c00-0c1e-bf00-37a3-353b-be90-1238.cable.dynamic.v6.ziggo.nl. [2001:1c00:c1e:bf00:37a3:353b:be90:1238])
        by smtp.gmail.com with ESMTPSA id b21sm1185407edr.53.2021.01.06.01.14.21
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Wed, 06 Jan 2021 01:14:21 -0800 (PST)
Subject: Re: [PATCH] thinkpad_acpi: fix: use scnprintf instead of snprintf.
To:     Joe Perches <joe@perches.com>,
        YANG LI <abaci-bugfix@linux.alibaba.com>
Cc:     mgross@linux.intel.com, ibm-acpi@hmh.eng.br,
        ibm-acpi-devel@lists.sourceforge.net,
        platform-driver-x86@vger.kernel.org, linux-kernel@vger.kernel.org
References: <1609914976-28113-1-git-send-email-abaci-bugfix@linux.alibaba.com>
 <2d5f6ffcf47ec4675cde21ff52fc70a9dd13b023.camel@perches.com>
From:   Hans de Goede <hdegoede@redhat.com>
Message-ID: <a08d4a47-df4a-5486-9b31-0548aebaf358@redhat.com>
Date:   Wed, 6 Jan 2021 10:14:20 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101
 Thunderbird/78.4.0
MIME-Version: 1.0
In-Reply-To: <2d5f6ffcf47ec4675cde21ff52fc70a9dd13b023.camel@perches.com>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

Hi,

On 1/6/21 10:01 AM, Joe Perches wrote:
> On Wed, 2021-01-06 at 14:36 +0800, YANG LI wrote:
>> The snprintf() function returns the number of characters which would
>> have been printed if there were enough space, but the scnprintf()
>> returns the number of characters which were actually printed. If the
>> buffer is not large enough, then using snprintf() would result in a
>> read overflow and an information leak. This error was found with the
>> help of coccicheck.
> 
> In all cases, the buffer _is_ large enough.
> 
> tmpi is length 5 and ok.
> include/sound/core.h:   char shortname[32];             /* short name of this soundcard */
> include/sound/core.h:   char longname[80];              /* name of this soundcard */
> include/sound/core.h:   char mixername[80];             /* mixer name */
> 
> _show function lengths are OK for all the uses with PAGE_SIZE.
> And it's probably better to use sysfs_emit for all the _show functions

Yes, please send a v2 with the following changes:

1. Use sysfs_emit in all the sysfs read functions
2. Do not replace snprintf with scnprintf when the return value is not used, that is just needless churn
3. Update the commit message to reflect 1.

Regards,

Hans