Re: [PATCH] printk: fix buffer overflow potential for print_text()

From: Sven Schnelle
Date: Sun Jan 24 2021 - 04:01:02 EST

Next message: Paul Cercueil: "Re: [RE-RESEND PATCH 1/4] usb: musb: Fix runtime PM race in musb_queue_resume_work"
Previous message: Paul Cercueil: "[PATCH v3 4/4] drm/ingenic: Fix non-OSD mode"
In reply to: John Ogness: "Re: [PATCH] printk: fix buffer overflow potential for print_text()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

John Ogness <john.ogness@xxxxxxxxxxxxx> writes:

> Hi Sven,
>
> Thanks for the outstanding analysis!
>
> On 2021-01-23, Sven Schnelle <svens@xxxxxxxxxxxxx> wrote:
>>> 1401 if (buf_size > 0)
>>> 1402 text[len] = 0;
>>
>> I don't think i have really understood how all the printk magic works,
>> but using r->text_buf[len] seems to be the correct place to put the
>> zero byte in that case?
>
> Yes, you are correct! @text is pointing to the beginning of the
> currently processed line, not the beginning of the buffer.
>
> I will submit a patch to fix our recent fix (unless you would like to do
> that).

Please go ahead, thank you!

Next message: Paul Cercueil: "Re: [RE-RESEND PATCH 1/4] usb: musb: Fix runtime PM race in musb_queue_resume_work"
Previous message: Paul Cercueil: "[PATCH v3 4/4] drm/ingenic: Fix non-OSD mode"
In reply to: John Ogness: "Re: [PATCH] printk: fix buffer overflow potential for print_text()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]