Received: by 2002:a05:6358:11c7:b0:104:8066:f915 with SMTP id i7csp6302436rwl;
        Wed, 22 Mar 2023 08:55:48 -0700 (PDT)
X-Google-Smtp-Source: AK7set+AQkN0C17QqiaRv9K0D6NXVELitB4pllEwbHtduHQXHuc0FPsl8lC0pxwve29BYf5dVVB2
X-Received: by 2002:a17:902:fa87:b0:1a1:b748:f360 with SMTP id lc7-20020a170902fa8700b001a1b748f360mr3258291plb.47.1679500547947;
        Wed, 22 Mar 2023 08:55:47 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1679500547; cv=none;
        d=google.com; s=arc-20160816;
        b=ZHy2mP8bD0tXbIsJV4Y7P3GmbLf5xbPlBL5pXLPQyl/YeJldaksx/rW9BSqJcFA9D/
         H0F33XvSNGex6bseDwDFLMPbLDcEM3NnRwheCF0qOOMuxRCWx8eKZZreO1elq+ihkU2y
         YpROKjUbB2Rlq/QuXMlMaIHWf0bANczYwmvIgURPOdk5iY6PI9FApen5zIS3sJ7uYScO
         nJ+9Fr0fjL7MDp7fRr/qn+iDDr/YSbYDYaRZFLBrw03d4s0Po8alf1ELEGo9zqJ74DPe
         SoD6SCT1l6OaHVqVMdhJ/NJ4IHA2hxbSRAIq3jVjJhlnIT+3kZnRxZvZfNqRTieFZ0VX
         q0jA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:in-reply-to:from
         :references:cc:to:content-language:subject:user-agent:mime-version
         :date:message-id;
        bh=XzvDjuf4mMmYt9bD8QAH052I5hTECP6jlinzUy70YjE=;
        b=MAYVnP8s7PIL1lGqD6NCR098P/fxxi7me6tYgO3tzxbDIpyf/AU1ciWWMXrK2qtn5A
         wfWbgAdD4M0TRoKkfLRRKqhZEwSPQlbJyLWfJp6GEu5/kLVQ5kTnxZSU187FEscBRL3m
         Pu2afFp7m2COz4tEUNuVOb/XsofhJ4CFYoTewqXZtIDVDj8eOeBhN3XhP9QnjtdrT2HU
         wN3AQPYOlN8wR1Y6U+IWp3n0ZGBmN9DcDXNxqIxXTI448OVg32Qi3Zlv+mTaDPf1lDET
         zd4bc4MMk5dkHBc0QW+uvE2HKiYiPbG8+GOplQWMQFuQFPWyVM3ZiVTEqTRNrP88zKgA
         lr1A==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id r19-20020a170902c61300b0019926d9c734si15637324plr.602.2023.03.22.08.55.33;
        Wed, 22 Mar 2023 08:55:47 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S230514AbjCVPvQ (ORCPT <rfc822;amit.kandalgaonkar@gmail.com>
        + 99 others); Wed, 22 Mar 2023 11:51:16 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:46536 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229668AbjCVPvN (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Wed, 22 Mar 2023 11:51:13 -0400
Received: from metis.ext.pengutronix.de (metis.ext.pengutronix.de [IPv6:2001:67c:670:201:290:27ff:fe1d:cc33])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 7635023C56
        for <linux-kernel@vger.kernel.org>; Wed, 22 Mar 2023 08:51:12 -0700 (PDT)
Received: from ptz.office.stw.pengutronix.de ([2a0a:edc0:0:900:1d::77] helo=[127.0.0.1])
        by metis.ext.pengutronix.de with esmtp (Exim 4.92)
        (envelope-from <a.fatoum@pengutronix.de>)
        id 1pf0jv-0007NF-6k; Wed, 22 Mar 2023 16:51:03 +0100
Message-ID: <e47793af-b409-5e88-c74c-73e76f5e11d1@pengutronix.de>
Date:   Wed, 22 Mar 2023 16:51:00 +0100
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101
 Thunderbird/102.7.2
Subject: Re: [PATCH net 1/2] net: dsa: realtek: fix out-of-bounds access
Content-Language: en-US
To:     Jakub Kicinski <kuba@kernel.org>
Cc:     Linus Walleij <linus.walleij@linaro.org>,
        =?UTF-8?Q?Alvin_=c5=a0ipraga?= <alsi@bang-olufsen.dk>,
        Andrew Lunn <andrew@lunn.ch>,
        Florian Fainelli <f.fainelli@gmail.com>,
        Vladimir Oltean <olteanv@gmail.com>,
        Luiz Angelo Daros de Luca <luizluca@gmail.com>,
        "David S. Miller" <davem@davemloft.net>, kernel@pengutronix.de,
        Eric Dumazet <edumazet@google.com>,
        Paolo Abeni <pabeni@redhat.com>, netdev@vger.kernel.org,
        linux-kernel@vger.kernel.org
References: <20230315130917.3633491-1-a.fatoum@pengutronix.de>
 <20230316210736.1910b195@kernel.org>
From:   Ahmad Fatoum <a.fatoum@pengutronix.de>
In-Reply-To: <20230316210736.1910b195@kernel.org>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
X-SA-Exim-Connect-IP: 2a0a:edc0:0:900:1d::77
X-SA-Exim-Mail-From: a.fatoum@pengutronix.de
X-SA-Exim-Scanned: No (on metis.ext.pengutronix.de); SAEximRunCond expanded to false
X-PTX-Original-Recipient: linux-kernel@vger.kernel.org
X-Spam-Status: No, score=-2.3 required=5.0 tests=NICE_REPLY_A,
        RCVD_IN_DNSWL_MED,SPF_HELO_NONE,SPF_PASS,URIBL_BLOCKED
        autolearn=unavailable autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 17.03.23 05:07, Jakub Kicinski wrote:
> On Wed, 15 Mar 2023 14:09:15 +0100 Ahmad Fatoum wrote:
>> -	priv = devm_kzalloc(&mdiodev->dev, sizeof(*priv), GFP_KERNEL);
>> +	priv = devm_kzalloc(&mdiodev->dev, sizeof(*priv) + var->chip_data_sz, GFP_KERNEL);
> 
> size_add() ?
> Otherwise some static checker is going to soon send us a patch saying
> this can overflow. Let's save ourselves the hassle.

The exact same line is already in realtek-smi. Would you prefer I send
a follow-up patch for net-next which switches over both files to size_add
or should I send a v2?

Cheers,
Ahmad



> 

-- 
Pengutronix e.K.                           |                             |
Steuerwalder Str. 21                       | http://www.pengutronix.de/  |
31137 Hildesheim, Germany                  | Phone: +49-5121-206917-0    |
Amtsgericht Hildesheim, HRA 2686           | Fax:   +49-5121-206917-5555 |