Received: by 2002:ab2:3141:0:b0:1ed:23cc:44d1 with SMTP id i1csp1461238lqg;
        Sun, 3 Mar 2024 11:07:20 -0800 (PST)
X-Forwarded-Encrypted: i=3; AJvYcCXIHmx3Lj4WIij3QC53Hb1f4FhRURSDnW9ZxBem9QShFkiVuoOkL7+T2MlU1MO61Fi/7xkCuSQbqKQ4FSQcsczY9lgWxcBwTi349KCcPQ==
X-Google-Smtp-Source: AGHT+IHKY1Rg7YaiAzsNtRght3MQQsSwZzXAXkllmF4LIx3hwTGGICLSGbIK0lS8ymAmQqAXjohN
X-Received: by 2002:a05:6a00:61cc:b0:6e6:271d:38e5 with SMTP id fw12-20020a056a0061cc00b006e6271d38e5mr90687pfb.21.1709492840548;
        Sun, 03 Mar 2024 11:07:20 -0800 (PST)
ARC-Seal: i=2; a=rsa-sha256; t=1709492840; cv=pass;
        d=google.com; s=arc-20160816;
        b=p2GpQqLswMGACVM19uG2n6OrWYsREVmkuCRndtx4QHdyRQptW2GcKQCZFcnpcUkxO1
         boP6AgrSITvvARgxlEqmmUssJ4kDBEhUYat2gazS3cl8EZS9A0mQ1Hp+ke5jtybsblZW
         idG9kCucv6zDbDTXYTs0kfgI0o0VeAlc60XrvxHiFZ2BJKl0uFskcsN5UsPqCMXFjBzQ
         gWnCCQfsu8T2GrcJJ4terBfyz1iJaYqwO7EbDsSOqfhUqsoQ8vJkSAnH3dspCxgErAI+
         g8v+F+Axorsm8Ec9OaK+hggf0Fs9oFN5aGiCsrpmNp1ub+2LvgpGI2uuyyCHFtTRgb96
         WX1g==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-transfer-encoding:mime-version:list-unsubscribe
         :list-subscribe:list-id:precedence:references:in-reply-to:message-id
         :subject:cc:to:from:date;
        bh=Q19JtH+NAlRkp5fvKZl62+MDddYwg2HIstlM2LDkP/Q=;
        fh=Z4tsOB/IV38gOyR2qPehPYRd6/PjJOdZwylA30ksxfw=;
        b=wvMKG3f15AXm/eX4/VeSnSgLVErbx1iqh3OdJ8cXEGGj5iQnoL+XU2Kwl6CI7GSfN8
         qQKGtSg6uthgWVKjzvgiqVNXVp/GIgA1Thxa8fK0/EnYbPOaTx13yiEo6RUu8DPFE5TX
         UugO3O7Z1KTkFwZSWoY82W01UUqXdvdRlY/h6mquaUJHTVe+Gz+YrAEvriUvIhuxeXTu
         tN0xwxvFEyFynrrBhiuX9CFmNW5umtjKOrI0BpBOd0zB+TwIEDRqMT4OJ8gGOU8FeLkp
         QOPVSXO8UQGrFPOk5i0IzcSmPFddfy2Fe/67hRIcGdX5dF/uJnG46O36QYfnU+VP16Cc
         MTdQ==;
        dara=google.com
ARC-Authentication-Results: i=2; mx.google.com;
       arc=pass (i=1);
       spf=pass (google.com: domain of linux-kernel+bounces-89863-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.48.161 as permitted sender) smtp.mailfrom="linux-kernel+bounces-89863-linux.lists.archive=gmail.com@vger.kernel.org"
Return-Path: <linux-kernel+bounces-89863-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from sy.mirrors.kernel.org (sy.mirrors.kernel.org. [147.75.48.161])
        by mx.google.com with ESMTPS id x53-20020a056a000bf500b006e58f1ee2casi7062664pfu.184.2024.03.03.11.07.20
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Sun, 03 Mar 2024 11:07:20 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-89863-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.48.161 as permitted sender) client-ip=147.75.48.161;
Authentication-Results: mx.google.com;
       arc=pass (i=1);
       spf=pass (google.com: domain of linux-kernel+bounces-89863-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.48.161 as permitted sender) smtp.mailfrom="linux-kernel+bounces-89863-linux.lists.archive=gmail.com@vger.kernel.org"
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by sy.mirrors.kernel.org (Postfix) with ESMTPS id 3ABDEB20A9D
	for <linux.lists.archive@gmail.com>; Sun,  3 Mar 2024 19:07:16 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id EAA0979DA0;
	Sun,  3 Mar 2024 19:07:09 +0000 (UTC)
Received: from smtp.kernel.org (aws-us-west-2-korg-mail-1.web.codeaurora.org [10.30.226.201])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 3C0B679942
	for <linux-kernel@vger.kernel.org>; Sun,  3 Mar 2024 19:07:08 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1709492829; cv=none; b=P66bV1YyKMJ1q6BCeTE1jvTxnjs3xNW4nF4ld8CH/b09RNqq+MhZKVytg7r0HyG3SzkTlJW38d6tg39bO2JzOGaafk2Atk1WHNvnICPvwb4HOn9yAyUMYO6WWChH6GIVbVAh3V0J/mJfLi/Jh74kDuf3b/0yx6aMBKygd4In3ak=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1709492829; c=relaxed/simple;
	bh=4aA/QhnOS8y/rJZfTHI33lkdZ9aduMlhTAqLH88yuFg=;
	h=Date:From:To:Cc:Subject:Message-ID:In-Reply-To:References:
	 MIME-Version:Content-Type; b=PaoJpOyDJPuwyhbImXlYFTdFKvAEzWu7Dw1TwKhwaPWC61s/idFxsv7eVTb9u/JRqC8QfNa6y10aV+ips3y9eMB9pgWT4lrT5EtRjrCMEHTMA2srSPdFvZhHI3djPmaHfmxks8TXiheCwb1VWLHswQ8br7wkiOFO8mXLXsk70no=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; arc=none smtp.client-ip=10.30.226.201
Received: by smtp.kernel.org (Postfix) with ESMTPSA id 10666C433F1;
	Sun,  3 Mar 2024 19:07:07 +0000 (UTC)
Date: Sun, 3 Mar 2024 14:07:05 -0500
From: Steven Rostedt <rostedt@goodmis.org>
To: Linus Torvalds <torvalds@linux-foundation.org>
Cc: LKML <linux-kernel@vger.kernel.org>, Masami Hiramatsu
 <mhiramat@kernel.org>, Mathieu Desnoyers <mathieu.desnoyers@efficios.com>,
 Sachin Sant <sachinp@linux.ibm.com>
Subject: Re: [GIT PULL] tracing: Prevent trace_marker being bigger than
 unsigned short
Message-ID: <20240303140705.0f655e36@rorschach.local.home>
In-Reply-To: <CAHk-=wiLdWetJgKHB72VeDALZsjpggEyyuiZ2KmoY_g+3horwQ@mail.gmail.com>
References: <20240302111244.3a1674be@gandalf.local.home>
	<CAHk-=wj376WMgZ24wKGEWDs_ojNtod-LDZBedPzDYRRcY60UYA@mail.gmail.com>
	<20240302145958.05aabdd2@rorschach.local.home>
	<CAHk-=wgjhdRj1V847NTF4veMN_tCbrySiEHXO8RO3n05cNeXeA@mail.gmail.com>
	<20240302154713.71e29402@rorschach.local.home>
	<CAHk-=wioeo5vyEWUZcGBKMsf3jnjrnnHc3uJiV=JjSKPdvZOEw@mail.gmail.com>
	<20240303075937.36fc6043@rorschach.local.home>
	<CAHk-=wiLdWetJgKHB72VeDALZsjpggEyyuiZ2KmoY_g+3horwQ@mail.gmail.com>
X-Mailer: Claws Mail 3.17.8 (GTK+ 2.24.33; x86_64-pc-linux-gnu)
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit

On Sun, 3 Mar 2024 09:38:04 -0800
Linus Torvalds <torvalds@linux-foundation.org> wrote:

> On Sun, 3 Mar 2024 at 04:59, Steven Rostedt <rostedt@goodmis.org> wrote:
> >
> > -       trace_seq_printf(s, ": %.*s", max, field->buf);
> > +       trace_seq_puts(s, ": ");
> > +       /* Write 1K chunks at a time */
> > +       p = field->buf;
> > +       do {
> > +               int pre = max > 1024 ? 1024 : max;
> > +               trace_seq_printf(s, "%.*s", pre, p);
> > +               max -= pre;
> > +               p += pre;
> > +       } while (max > 0);  
> 
> The above loop is complete garbage.
> 
> If 'p' is a string, you're randomly just walking past the end of the
> string with 'p += pre'

The string in question isn't some random string. It's a print event on
the ring buffer where the size is strlen(p) rounded up to word size.
That means, max will be no bigger than word-size - 1 greater than
strlen(p). That means the chunks of 1024 will never land in the middle
of garbage.

And even if for some reason it did, it would simply print garbage in
the output that is already available to user space via reading the raw
ring buffer.

> 
> And if 'o' isn't a string but has a fixed size, you shouldn't use '%s'
> in the first place, you should just use seq_write().

The precision actually isn't needed. I added it just in case for some
reason a bug happened and the \0 was truncated.

> 
> Just stop. You are doing things entirely wrong, and you're just adding
> random code.
> 
> I'm not taking *any* fixes from you as things are now, you're once
> again only making things worse.
> 
> What was wrong with saying "don't do that"? You seem to be bending
> over backwards to doing stupid things, and then insisting on doing
> them entirely wrong.

Don't do what?

The previous change was just adding some random limit to a write into
the ring buffer, to prevent one of the readers of the ring buffer from
overflowing the precision check.

Hell, I'm sorry I added that precision check. I guess this could all be
solved with:

diff --git a/kernel/trace/trace_output.c b/kernel/trace/trace_output.c
index 3e7fa44dc2b2..d8b302d01083 100644
--- a/kernel/trace/trace_output.c
+++ b/kernel/trace/trace_output.c
@@ -1587,12 +1587,11 @@ static enum print_line_t trace_print_print(struct trace_iterator *iter,
 {
 	struct print_entry *field;
 	struct trace_seq *s = &iter->seq;
-	int max = iter->ent_size - offsetof(struct print_entry, buf);
 
 	trace_assign_type(field, iter->ent);
 
 	seq_print_ip_sym(s, field->ip, flags);
-	trace_seq_printf(s, ": %.*s", max, field->buf);
+	trace_seq_printf(s, ": %s", field->buf);
 
 	return trace_handle_return(s);
 }
@@ -1601,11 +1600,10 @@ static enum print_line_t trace_print_raw(struct trace_iterator *iter, int flags,
 					 struct trace_event *event)
 {
 	struct print_entry *field;
-	int max = iter->ent_size - offsetof(struct print_entry, buf);
 
 	trace_assign_type(field, iter->ent);
 
-	trace_seq_printf(&iter->seq, "# %lx %.*s", field->ip, max, field->buf);
+	trace_seq_printf(&iter->seq, "# %lx %s", field->ip, field->buf);
 
 	return trace_handle_return(&iter->seq);
 }

Because the string should always end with a '\0' in the first
place.

-- Steve