Received: by 2002:ab2:1689:0:b0:1f7:5705:b850 with SMTP id d9csp716447lqa; Sun, 28 Apr 2024 00:28:22 -0700 (PDT) X-Forwarded-Encrypted: i=3; AJvYcCUeM9fc7mxC6/M/6qSbVq/lEXcslM0IdwSk5YlPRmyjRTiGiQcuX420OaY9G1JuzFC8FM6r5LPIJcyVdpEJUfRR6BWYlISxl9KLY1enTg== X-Google-Smtp-Source: AGHT+IFKh2QGDrc6WBvh8UBhPHViLw7iQxN70U6lnp/OtfrH3wpRPN7Nq1vJs89ff48+agY7uUS2 X-Received: by 2002:a05:6214:130d:b0:6a0:5528:9594 with SMTP id pn13-20020a056214130d00b006a055289594mr7784753qvb.64.1714289302361; Sun, 28 Apr 2024 00:28:22 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1714289302; cv=pass; d=google.com; s=arc-20160816; b=mJ7nFd471/EF7stv7DTXuwhpgTT/LXlzg6t5NWfo2l5oRJL4XE2TDCx4dFckPI1mig scl5qP/9f5YFIYqSLR/7qJ3K1E40u7s+5W1surS28KPoshQncS4oXkkIF+rEDsBxHtuc PdrIIivZ7SEAArrcY5MVhoyGEPIkxxCkB0BO1GNlMW/nLY7sxaxwTJ04CdGBv5VSrnH3 Ho3xw3DzeWqpVrkcq2pH0szJq3JsCibLLxOLIN7TmFrXQ1f9BRoPceSZv7ee1tbZhU6g 7DD+vz/6TE2poJllPqlnvFCz54/BNYFFevGhlzyc7wx8hFtZpCbVB8Vcqk+AWcMIlUWH +Aeg== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=content-transfer-encoding:mime-version:list-unsubscribe :list-subscribe:list-id:precedence:message-id:date:subject:cc:to :from:dkim-signature; bh=WY9vcFIYHyY28AUyfY/N7+e9B4gmGc0udXw0k/OYO9k=; fh=aAXikvd/Nn4zBmRgUkB79iApRovF4iyae+DBKxIRKY8=; b=qT3PmwgSfYYripgEdgAWjl27a6oDDsnxkiXuHCin/FQw8fy39/CZz+W5Up0SCvwUKP iW4dhQVrBcXK+Jya+rT726zkkQqN6Qd0WRjKAqnOGc5Fgk6EypGqkda9QYpWC/8PHBuY VsdRgYs4nIRU1xJ5PbSWKg9zChyIJR5KXvZoB3j3E2Flf3qIw3WjJmu2fG3SPfErUOdK fttOVG+Fw3hNBQruqaGPnTtmOPjpDS7+YlED0TRm4aMSO5wIR18XOdu4zw0L6ILs9kAh aXrH6B378M2rWv4IKyvM7WcCHg8HbYrHJW3JNZVUPJ5RZn0S20mwtrWYVXiBfjr5qoBG hXxw==; dara=google.com ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@163.com header.s=s110527 header.b="MJwmZXo/"; arc=pass (i=1 spf=pass spfdomain=163.com dkim=pass dkdomain=163.com dmarc=pass fromdomain=163.com); spf=pass (google.com: domain of linux-kernel+bounces-161308-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45d1:ec00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-161308-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=163.com Return-Path: Received: from ny.mirrors.kernel.org (ny.mirrors.kernel.org. [2604:1380:45d1:ec00::1]) by mx.google.com with ESMTPS id 19-20020ac85713000000b0043adeb7200dsi182908qtw.458.2024.04.28.00.28.22 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sun, 28 Apr 2024 00:28:22 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel+bounces-161308-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45d1:ec00::1 as permitted sender) client-ip=2604:1380:45d1:ec00::1; Authentication-Results: mx.google.com; dkim=pass header.i=@163.com header.s=s110527 header.b="MJwmZXo/"; arc=pass (i=1 spf=pass spfdomain=163.com dkim=pass dkdomain=163.com dmarc=pass fromdomain=163.com); spf=pass (google.com: domain of linux-kernel+bounces-161308-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:45d1:ec00::1 as permitted sender) smtp.mailfrom="linux-kernel+bounces-161308-linux.lists.archive=gmail.com@vger.kernel.org"; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=163.com Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ny.mirrors.kernel.org (Postfix) with ESMTPS id 1B2E31C20D10 for ; Sun, 28 Apr 2024 07:28:22 +0000 (UTC) Received: from localhost.localdomain (localhost.localdomain [127.0.0.1]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 705B750A67; Sun, 28 Apr 2024 07:28:16 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (1024-bit key) header.d=163.com header.i=@163.com header.b="MJwmZXo/" Received: from m16.mail.163.com (m16.mail.163.com [220.197.31.5]) by smtp.subspace.kernel.org (Postfix) with ESMTP id 051044F8A3 for ; Sun, 28 Apr 2024 07:28:11 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=220.197.31.5 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1714289295; cv=none; b=h1OtuIKwa7dfJe1o9/+9eKprz8gqXy/d0eVjFDCzG6TvFk14QgopMqIJjYStzSY/TWkzbf2z4LhRYHDdUH+xTt3rD7o9uJ48vadwBmTcZQDwTt2RUAO/zTQod0FOPtpV6+PB/GXJ2/zrrw2NXmyPUEwDQsyF1ZiumASH4UPWcus= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1714289295; c=relaxed/simple; bh=sRR+OoNe+CJbOABxoZNaQT2CCvoMwl0YHxGhGd8xLdY=; h=From:To:Cc:Subject:Date:Message-Id:MIME-Version:Content-Type; b=L/LsaT8MDyNvSaTklreA7H/VheL5b4/+ymz5waB33aGeZp1DMl26cOnNd7pt/4WNEC0NjnR0znYEm8H9GUp6b0Gs0p8DxBEZzJ2X2DSSLJrl8wqZLX40paefU2TUqIs27xXCwBe8EiPGMFU7F481FjKoBA7+n5BvmexYzpyOXfY= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=163.com; spf=pass smtp.mailfrom=163.com; dkim=pass (1024-bit key) header.d=163.com header.i=@163.com header.b=MJwmZXo/; arc=none smtp.client-ip=220.197.31.5 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=163.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=163.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=163.com; s=s110527; h=From:Subject:Date:Message-Id:MIME-Version: Content-Type; bh=WY9vcFIYHyY28AUyfY/N7+e9B4gmGc0udXw0k/OYO9k=; b=MJwmZXo/FWA/xvxxIJYUtL/nMMLvvp3LAUnu4qVhcNvOYcnSO41NGaQtA2SN1M 28Ekgtsxqs+ufDdfiU6gWvIvN/NeTCCJuidGTQSfRMKxs+HcxB2D2TQ5VWwe9ZGi YylLXdNVlsbK619BrjJQAOnIWmTnRFq3r3q+s1QOLuur4= Received: from localhost.localdomain (unknown [111.48.58.10]) by gzga-smtp-mta-g3-4 (Coremail) with SMTP id _____wDnL_lz+i1mKrimCg--.12082S2; Sun, 28 Apr 2024 15:27:48 +0800 (CST) From: huanglei To: sudipm.mukherjee@gmail.com Cc: linux-kernel@vger.kernel.org, huanglei Subject: [PATCH] parport: Increase buffer max length to avoid memory out of bounds overflow Date: Sun, 28 Apr 2024 15:27:43 +0800 Message-Id: <20240428072743.14556-1-huanglei814@163.com> X-Mailer: git-send-email 2.17.1 Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-CM-TRANSID:_____wDnL_lz+i1mKrimCg--.12082S2 X-Coremail-Antispam: 1Uf129KBjvJXoW7Ary7CFWfZw4kGr4UKr45Jrb_yoW8Gr4Upa 98Krs0krZ8t3yUGw4kZwsI93yrXa97X3W8WF17G34akr4jqFn7ZFn0kF9FkF9Ygrs7uaya grs3Kr1UCr4jkF7anT9S1TB71UUUUU7qnTZGkaVYY2UrUUUUjbIjqfuFe4nvWSU5nxnvy2 9KBjDUYxBIdaVFxhVjvjDU0xZFpf9x07UgYFZUUUUU= X-CM-SenderInfo: xkxd0wxohlmiqu6rljoofrz/1tbisBfO9mV4JHDwtwAAsR From: huanglei Most of the time,will use 64 bit address. such as port->base=0xffffffc010e21280 and then use len += sprintf (buffer, "%lu\t%lu\n", port->base, port->base_hi), port->base convert to string is "18446743799114896000" add port->base_hi is "0" and "\t" "\n" len will be 23. But buffer the original max length is 20, length 23 is out of buffer. So to make sure 64 bit address will not experience buffer overflow, need increase buffer size to 32. Signed-off-by: huanglei --- drivers/parport/procfs.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/drivers/parport/procfs.c b/drivers/parport/procfs.c index bd388560ed59..6722ae620b68 100644 --- a/drivers/parport/procfs.c +++ b/drivers/parport/procfs.c @@ -117,7 +117,7 @@ static int do_hardware_base_addr(struct ctl_table *table, int write, void *result, size_t *lenp, loff_t *ppos) { struct parport *port = (struct parport *)table->extra1; - char buffer[20]; + char buffer[32]; int len = 0; if (*ppos) { @@ -171,7 +171,7 @@ static int do_hardware_dma(struct ctl_table *table, int write, void *result, size_t *lenp, loff_t *ppos) { struct parport *port = (struct parport *)table->extra1; - char buffer[20]; + char buffer[32]; int len = 0; if (*ppos) { -- 2.17.1