Received: by 2002:ab2:69cc:0:b0:1f4:be93:e15a with SMTP id n12csp1971017lqp; Tue, 16 Apr 2024 03:38:01 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCUVJjtWHeAHpEH5cjRqv2BH5kpIzGd+VBPb3fvLr2Vy4pSV1kEDSnV0XpKbNZSEpIdo64Yb+dCcf9sK+EcxTMPg/IwR2JULcjRKAX8RBA== X-Google-Smtp-Source: AGHT+IEJKsf3BrreobJ3BqHpQUZmcWGBODt8C2JvwUnbt2NmdYY3HL00D+J+PYQbeepG5lftdLzt X-Received: by 2002:a17:906:f59f:b0:a52:55f9:854a with SMTP id cm31-20020a170906f59f00b00a5255f9854amr5994376ejd.13.1713263880855; Tue, 16 Apr 2024 03:38:00 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1713263880; cv=pass; d=google.com; s=arc-20160816; b=bCMtJdIMmwyF4VaOn8yfflr7c1q6nlcAC54wueSyAaQspvPIqUJ5z+lmn47ZbQlLhR 4aGigRF4p1CI0ELtcBhRuEaC8RTnHlnG4v9D2E1k+uwOn9Hu4ZyBlNa2HNnbzwnkZe6U a8kzvESWtMlea8pV1c6QicOVp5l+S2ir3IeAiHMvrpTno8KGW0CDTHhYbHbbJzRJWpn1 YOtf6QTnD3jDqGpe2owvNULyL5P8zpD0iywbjbwf+Q8ygXhSH1sbD7Rg9CU//xChLW0j tjwMcYkPq07rZ5/c4rx7IrKi9dtLC4nhlx82gU9VC1yS+bjMbCwXdc324XSXPVkfIOJS VOJQ== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:message-id:date:subject:cc:to :from:dkim-signature; bh=WY9vcFIYHyY28AUyfY/N7+e9B4gmGc0udXw0k/OYO9k=; fh=aAXikvd/Nn4zBmRgUkB79iApRovF4iyae+DBKxIRKY8=; b=m9hss8Dmc2G7ifM+Ur5P7+sAVXQ2n5Jtrsn2m1rBwTxS4ZG8mo2scKjfQkEENnmjSa +SqyAOuXMxCujla2DNY5tsOK7i2d+v3GE0cIKNhO/GFbt3QX3yaEg0iB8GkPodjFWSCr AVDzg6bbSec2vateeDc/BMiEjp4tMa2/SxGxit7ZMnGNZ4zv/LkPklX/w7cbvqL1g4T4 NVmTozd1ULzDVaMcqsTzeoBvS0bzD5uQo38t/TQRY9p4/sVTMwD6c+6utw7Az2bifdME KWTAAKVMuti9ZVX3pw3usW0+z35GCM9fezfoLKkjKQhNG8hHdEIOB+NBSBDi1FOdlVAU oiZQ==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@163.com header.s=s110527 header.b=is5fGuuC; arc=pass (i=1 spf=pass spfdomain=163.com dkim=pass dkdomain=163.com dmarc=pass fromdomain=163.com); spf=pass (google.com: domain of linux-kernel+bounces-146636-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-146636-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=163.com Return-Path: Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [147.75.80.249]) by mx.google.com with ESMTPS id gx17-20020a170906f1d100b00a523b5505d3si4221709ejb.939.2024.04.16.03.38.00 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 16 Apr 2024 03:38:00 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-146636-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) client-ip=147.75.80.249; Authentication-Results: mx.google.com; dkim=pass header.i=@163.com header.s=s110527 header.b=is5fGuuC; arc=pass (i=1 spf=pass spfdomain=163.com dkim=pass dkdomain=163.com dmarc=pass fromdomain=163.com); spf=pass (google.com: domain of linux-kernel+bounces-146636-linux.lists.archive=gmail.com@vger.kernel.org designates 147.75.80.249 as permitted sender) smtp.mailfrom="linux-kernel+bounces-146636-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=163.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by am.mirrors.kernel.org (Postfix) with ESMTPS id 77F5E1F21D51 for ; Tue, 16 Apr 2024 10:38:00 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 772C71E87F; Tue, 16 Apr 2024 10:37:48 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=163.com header.i=@163.com header.b="is5fGuuC" Received: from m16.mail.163.com (m16.mail.163.com [220.197.31.3]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 1A661127E05 for ; Tue, 16 Apr 2024 10:37:43 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=220.197.31.3 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1713263867; cv=none; b=eP1eEy5JFCeuDtreS+5uCmeSILroyO0yessdjYXfvpkiQRpCxcp9+EHmCVU/kfX2BEof5zZVB15kMguyWCvg/WopntlJ5IyrOFC/LMzoKSLyHRybQZ88uWRik+vwheErrkUvY3iglhovptnQbW4ZzuaNIfZ67rmVOimPnifpNTc= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1713263867; c=relaxed/simple; bh=sRR+OoNe+CJbOABxoZNaQT2CCvoMwl0YHxGhGd8xLdY=; h=From:To:Cc:Subject:Date:Message-Id:MIME-Version:Content-Type; b=ihtTZ553GJNz6honDtPC8TRfwLWENTtNadJxjsyBfalqJQzS+BkcfOBC9//iKQQhvJGezbnKw0XS7S6OZHHllXwXFJYWvLTb8II5OBib0Z43hauSVr6WH3PBHBb0/4rQ72SWxvnA4JUk3qbVo2wiwlN5xqYzKWJ0TXfA/QuUg7Q= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=163.com; spf=pass smtp.mailfrom=163.com; dkim=pass (1024-bit key) header.d=163.com header.i=@163.com header.b=is5fGuuC; arc=none smtp.client-ip=220.197.31.3 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=163.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=163.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=163.com; s=s110527; h=From:Subject:Date:Message-Id:MIME-Version: Content-Type; bh=WY9vcFIYHyY28AUyfY/N7+e9B4gmGc0udXw0k/OYO9k=; b=is5fGuuCOJKh3UefIBXQ4bdYKsCfqftHIoBJJaOAkbTdPjxueNr9VdXBV936as I47lsdXGs8wprLXERsNJLx7r2C+Ruz2eYzknu/lZqxIc2X/Ab15tmJlmfnMSbg4k q+r904m0xxs491u0Zs0Smhg0DrLMU+m9iGul2q5dnYd8Y= Received: from localhost.localdomain (unknown [111.48.58.12]) by gzga-smtp-mta-g2-4 (Coremail) with SMTP id _____wDnF93fVB5mpJN4AQ--.30327S2; Tue, 16 Apr 2024 18:37:19 +0800 (CST) From: huanglei To: sudipm.mukherjee@gmail.com Cc: linux-kernel@vger.kernel.org, huanglei Subject: [PATCH] parport: Increase buffer max length to avoid memory out of bounds overflow Date: Tue, 16 Apr 2024 18:36:57 +0800 Message-Id: <20240416103657.17628-1-huanglei814@163.com> X-Mailer: git-send-email 2.17.1 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-CM-TRANSID:_____wDnF93fVB5mpJN4AQ--.30327S2 X-Coremail-Antispam: 1Uf129KBjvJXoW7Ary7CFWfZw4kGr4UKr45Jrb_yoW8Gr4Upa 98Krs0krZ8t3yUGw4kZwsI93yrXa97X3W8WF17G34akr4jqFn7ZFn0kF9FkF9Ygrs7uaya grs3Kr1UCr4jkF7anT9S1TB71UUUUU7qnTZGkaVYY2UrUUUUjbIjqfuFe4nvWSU5nxnvy2 9KBjDUYxBIdaVFxhVjvjDU0xZFpf9x07U65lnUUUUU= X-CM-SenderInfo: xkxd0wxohlmiqu6rljoofrz/xtbBzRXB9mVOC6sktQACs3 From: huanglei Most of the time,will use 64 bit address. such as port->base=0xffffffc010e21280 and then use len += sprintf (buffer, "%lu\t%lu\n", port->base, port->base_hi), port->base convert to string is "18446743799114896000" add port->base_hi is "0" and "\t" "\n" len will be 23. But buffer the original max length is 20, length 23 is out of buffer. So to make sure 64 bit address will not experience buffer overflow, need increase buffer size to 32. Signed-off-by: huanglei --- drivers/parport/procfs.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/drivers/parport/procfs.c b/drivers/parport/procfs.c index bd388560ed59..6722ae620b68 100644 --- a/drivers/parport/procfs.c +++ b/drivers/parport/procfs.c @@ -117,7 +117,7 @@ static int do_hardware_base_addr(struct ctl_table *table, int write, void *result, size_t *lenp, loff_t *ppos) { struct parport *port = (struct parport *)table->extra1; - char buffer[20]; + char buffer[32]; int len = 0; if (*ppos) { @@ -171,7 +171,7 @@ static int do_hardware_dma(struct ctl_table *table, int write, void *result, size_t *lenp, loff_t *ppos) { struct parport *port = (struct parport *)table->extra1; - char buffer[20]; + char buffer[32]; int len = 0; if (*ppos) { -- 2.17.1