Re: [PATCH 2/4] lib/vsprintf.c: also improve sanity check in bstr_printf()

From: Kees Cook
Date: Mon Sep 28 2015 - 18:31:11 EST

Next message: Andrew Duggan: "Re: [PATCH] HID: hid-input: allow input_configured callback return errors"
Previous message: Kees Cook: "Re: [PATCH 1/4] lib/vsprintf.c: handle invalid format specifiers more robustly"
In reply to: Rasmus Villemoes: "[PATCH 2/4] lib/vsprintf.c: also improve sanity check in bstr_printf()"
Next in thread: Rasmus Villemoes: "[PATCH 1/4] lib/vsprintf.c: handle invalid format specifiers more robustly"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Sep 25, 2015 at 10:41 AM, Rasmus Villemoes
<linux@xxxxxxxxxxxxxxxxxx> wrote:
> Quoting from 2aa2f9e21e4e ("lib/vsprintf.c: improve sanity check in
> vsnprintf()"):
>
> On 64 bit, size may very well be huge even if bit 31 happens to be 0.
> Somehow it doesn't feel right that one can pass a 5 GiB buffer but not a
> 3 GiB one. So cap at INT_MAX as was probably the intention all along.
> This is also the made-up value passed by sprintf and vsprintf.
>
> I should have seen this copy-pasted instance back then, but let's just
> do it now.
>
> Signed-off-by: Rasmus Villemoes <linux@xxxxxxxxxxxxxxxxxx>

Acked-by: Kees Cook <keescook@xxxxxxxxxxxx>

-Kees

--
Kees Cook
Chrome OS Security
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrew Duggan: "Re: [PATCH] HID: hid-input: allow input_configured callback return errors"
Previous message: Kees Cook: "Re: [PATCH 1/4] lib/vsprintf.c: handle invalid format specifiers more robustly"
In reply to: Rasmus Villemoes: "[PATCH 2/4] lib/vsprintf.c: also improve sanity check in bstr_printf()"
Next in thread: Rasmus Villemoes: "[PATCH 1/4] lib/vsprintf.c: handle invalid format specifiers more robustly"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]