Received: by 2002:a05:6a10:af89:0:0:0:0 with SMTP id iu9csp3562830pxb; Mon, 24 Jan 2022 12:17:14 -0800 (PST) X-Google-Smtp-Source: ABdhPJwnc4oseNwzHa0PWPLy4/f/EuXb25SCetutpXmRUzCdeqWtPiNkTVcARD7KTVttTUgnA+GW X-Received: by 2002:a17:90a:6b05:: with SMTP id v5mr3556879pjj.194.1643055434425; Mon, 24 Jan 2022 12:17:14 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1643055434; cv=none; d=google.com; s=arc-20160816; b=NqmQEnzPfVlweUffJe50AC5da89UxZ1nRnwCK4xOlEGowqdi8wizql5Gva08njKm+q 9xevM4L5Isk5QUVwBeI8oSCQMGNgQ7grlyJ60L7DulH8+9m+EceZDI+sMaYigBUl7siz HsFxY2of/fMMHBenuS8MIrBfIWm8yGqFNofdjFvusE4VTzrB2snPq6vDBCFhuCcwsAj6 mww8HpVKRlgCzFEncN2wypejkJmJ84jiTvOaS6YsafQDucausD7TuqT0+I2Z44npnlpx fFTBtULNcxXv6siWS32pjEep5MQIk4jyS85SwvwTXVKs9bB3muzNA7ptIxsNLDiF3SdD X40A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :user-agent:references:in-reply-to:message-id:date:subject:cc:to :from:dkim-signature; bh=eKcpstm3KJQrvMZ7HHxEFjUVqxltk3lrvjcmqtlJDwY=; b=Dj3BBEgi2AnC9FlqtsI2NM+CZjzQnfXR84UtNN6UjJIleqjXGAaGPIhWsTvD6DJyYD rk1iToTDVeAvgmq0KkgyaM+8oKCcZrQ/IRhMiKRmIDcZNEH/G2e4pPsvw8YHhpo7Pjze uVLpFkUo9ausPOJlG7JE9yceLBmz45/Vzuz1AvBzXQuwEwWUOPTZ62H8U5GD9JTtzAgI ddoIqz64WD4FfwG1HPLUjMXNsFm3ZwN0ixe2jcDtXBCWL8M/zoLSeKwY6z60TiAr0Cyi nZXJqjMMym8Xqgnfjy10qAA8otXbeJBeoGAnrNEltHQ+lDsw+OXgrYxWaQV0BcSgdijS vGmg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=HE0ayxZK; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id my5si298247pjb.92.2022.01.24.12.17.02; Mon, 24 Jan 2022 12:17:14 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=HE0ayxZK; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1347122AbiAXTSh (ORCPT + 99 others); Mon, 24 Jan 2022 14:18:37 -0500 Received: from dfw.source.kernel.org ([139.178.84.217]:39192 "EHLO dfw.source.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1346755AbiAXTJg (ORCPT ); Mon, 24 Jan 2022 14:09:36 -0500 Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by dfw.source.kernel.org (Postfix) with ESMTPS id 98971611DA; Mon, 24 Jan 2022 19:09:35 +0000 (UTC) Received: by smtp.kernel.org (Postfix) with ESMTPSA id 7E626C340E5; Mon, 24 Jan 2022 19:09:34 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1643051375; bh=DrDXfsqHh2FEtC2DRMTIv+/soE/QWkgoZin5Cpq2nFw=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=HE0ayxZK4diCVky77iFIb4dKhjmBSOZhHmuFoYxw4euZ2ySQAJxUyTxzwZKML+ag2 31pygo6y368epj6IdEHs8pA+xA3nm0NHRXYExAWr+Ad2P0UfB1+kWO4W4tKvHaCb+t l081GHi6vRfBQlkmTcHevOArstEcCRu2MSb3jUQE= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, kernel test robot , Christophe Leroy , Sasha Levin Subject: [PATCH 4.14 140/186] w1: Misuse of get_user()/put_user() reported by sparse Date: Mon, 24 Jan 2022 19:43:35 +0100 Message-Id: <20220124183941.608785485@linuxfoundation.org> X-Mailer: git-send-email 2.34.1 In-Reply-To: <20220124183937.101330125@linuxfoundation.org> References: <20220124183937.101330125@linuxfoundation.org> User-Agent: quilt/0.66 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Christophe Leroy [ Upstream commit 33dc3e3e99e626ce51f462d883b05856c6c30b1d ] sparse warnings: (new ones prefixed by >>) >> drivers/w1/slaves/w1_ds28e04.c:342:13: sparse: sparse: incorrect type in initializer (different address spaces) @@ expected char [noderef] __user *_pu_addr @@ got char *buf @@ drivers/w1/slaves/w1_ds28e04.c:342:13: sparse: expected char [noderef] __user *_pu_addr drivers/w1/slaves/w1_ds28e04.c:342:13: sparse: got char *buf >> drivers/w1/slaves/w1_ds28e04.c:356:13: sparse: sparse: incorrect type in initializer (different address spaces) @@ expected char const [noderef] __user *_gu_addr @@ got char const *buf @@ drivers/w1/slaves/w1_ds28e04.c:356:13: sparse: expected char const [noderef] __user *_gu_addr drivers/w1/slaves/w1_ds28e04.c:356:13: sparse: got char const *buf The buffer buf is a failsafe buffer in kernel space, it's not user memory hence doesn't deserve the use of get_user() or put_user(). Access 'buf' content directly. Link: https://lore.kernel.org/lkml/202111190526.K5vb7NWC-lkp@intel.com/T/ Reported-by: kernel test robot Signed-off-by: Christophe Leroy Link: https://lore.kernel.org/r/d14ed8d71ad4372e6839ae427f91441d3ba0e94d.1637946316.git.christophe.leroy@csgroup.eu Signed-off-by: Greg Kroah-Hartman Signed-off-by: Sasha Levin --- drivers/w1/slaves/w1_ds28e04.c | 26 ++++++-------------------- 1 file changed, 6 insertions(+), 20 deletions(-) diff --git a/drivers/w1/slaves/w1_ds28e04.c b/drivers/w1/slaves/w1_ds28e04.c index ec234b846eb3c..e5eb19a34ee2a 100644 --- a/drivers/w1/slaves/w1_ds28e04.c +++ b/drivers/w1/slaves/w1_ds28e04.c @@ -34,7 +34,7 @@ static int w1_strong_pullup = 1; module_param_named(strong_pullup, w1_strong_pullup, int, 0); /* enable/disable CRC checking on DS28E04-100 memory accesses */ -static char w1_enable_crccheck = 1; +static bool w1_enable_crccheck = true; #define W1_EEPROM_SIZE 512 #define W1_PAGE_COUNT 16 @@ -341,32 +341,18 @@ static BIN_ATTR_RW(pio, 1); static ssize_t crccheck_show(struct device *dev, struct device_attribute *attr, char *buf) { - if (put_user(w1_enable_crccheck + 0x30, buf)) - return -EFAULT; - - return sizeof(w1_enable_crccheck); + return sysfs_emit(buf, "%d\n", w1_enable_crccheck); } static ssize_t crccheck_store(struct device *dev, struct device_attribute *attr, const char *buf, size_t count) { - char val; - - if (count != 1 || !buf) - return -EINVAL; + int err = kstrtobool(buf, &w1_enable_crccheck); - if (get_user(val, buf)) - return -EFAULT; + if (err) + return err; - /* convert to decimal */ - val = val - 0x30; - if (val != 0 && val != 1) - return -EINVAL; - - /* set the new value */ - w1_enable_crccheck = val; - - return sizeof(w1_enable_crccheck); + return count; } static DEVICE_ATTR_RW(crccheck); -- 2.34.1