Re: [PATCH 2/4] HID: bpf: prevent buffer overflow in hid_hw_request

Next message: Christian Bruel: "Re: [PATCH v10 3/8] PCI: dwc: Advertise dynamic inbound mapping support"
Previous message: Jiri Kosina: "Re: [PATCH 1/4] selftests/hid: fix compilation when bpf_wq and hid_device are not exported"
In reply to: Benjamin Tissoires: "[PATCH 2/4] HID: bpf: prevent buffer overflow in hid_hw_request"
Next in thread: Benjamin Tissoires: "[PATCH 1/4] selftests/hid: fix compilation when bpf_wq and hid_device are not exported"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Jiri Kosina

Date: Fri Mar 13 2026 - 12:00:19 EST

On Fri, 13 Mar 2026, Benjamin Tissoires wrote:

> right now the returned value is considered to be always valid. However,
> when playing with HID-BPF, the return value can be arbitrary big,
> because it's the return value of dispatch_hid_bpf_raw_requests(), which
> calls the struct_ops and we have no guarantees that the value makes
> sense.
>
> Cc: stable@xxxxxxxxxxxxxxx
> Signed-off-by: Benjamin Tissoires <bentiss@xxxxxxxxxx>

Acked-by: Jiri Kosina <jkosina@xxxxxxxx>

--
Jiri Kosina
SUSE Labs