Re: [PATCH] nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists()

From: Keith Busch
Date: Wed May 08 2024 - 09:15:51 EST

Next message: Kuan-Wei Chiu: "[PATCH] lib/test_bitops: Fix compilation error on ppc64_defconfig"
Previous message: Ramona Gradinariu: "[PATCH v2 8/8] drivers: iio: imu: Add support for adis1657x family"
In reply to: Sagi Grimberg: "Re: [PATCH] nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, May 08, 2024 at 10:43:04AM +0300, Dan Carpenter wrote:
> The nsid value is a u32 that comes from nvmet_req_find_ns(). It's
> endian data and we're on an error path and both of those raise red
> flags. So let's make this safer.
>
> 1) Make the buffer large enough for any u32.
> 2) Remove the unnecessary initialization.
> 3) Use snprintf() instead of sprintf() for even more safety.
> 4) The sprintf() function returns the number of bytes printed, not
> counting the NUL terminator. It is impossible for the return value to
> be <= 0 so delete that.
>
> Fixes: 505363957fad ("nvmet: fix nvme status code when namespace is disabled")
> Signed-off-by: Dan Carpenter <dan.carpenter@xxxxxxxxxx>

Thanks, applied to nvme-6.9.

Next message: Kuan-Wei Chiu: "[PATCH] lib/test_bitops: Fix compilation error on ppc64_defconfig"
Previous message: Ramona Gradinariu: "[PATCH v2 8/8] drivers: iio: imu: Add support for adis1657x family"
In reply to: Sagi Grimberg: "Re: [PATCH] nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]