Re: [PATCH 05/10] gpio: mockup: improve the debugfs input sanitization

From: Andy Shevchenko
Date: Sat May 27 2017 - 12:48:03 EST

Next message: Wesley: "I'm just seeking for serious friendship"
Previous message: Andy Shevchenko: "Re: [PATCH 05/10] gpio: mockup: improve the debugfs input sanitization"
In reply to: Andy Shevchenko: "Re: [PATCH 05/10] gpio: mockup: improve the debugfs input sanitization"
Next in thread: Bartosz Golaszewski: "Re: [PATCH 05/10] gpio: mockup: improve the debugfs input sanitization"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, May 27, 2017 at 7:45 PM, Andy Shevchenko
<andy.shevchenko@xxxxxxxxx> wrote:
> On Thu, May 25, 2017 at 11:33 AM, Bartosz Golaszewski <brgl@xxxxxxxx> wrote:
>> We're currently only checking the first character of the input to the
>> debugfs event files, so a string like '0sdfdsf' is valid and indicates
>> a falling edge event.
>>
>> Be more strict and only allow '0', '1', '0\n' & '1\n'.
>
> Why not to be so strict and use
>
> kstrtobool_from_user();
>
> instead?

Or if you still wish to be strict,
ret = kstrtou8_from_user();
if (ret)
return ret;

if (val > 1)
return -ERANGE;

or alike.

--
With Best Regards,
Andy Shevchenko

Next message: Wesley: "I'm just seeking for serious friendship"
Previous message: Andy Shevchenko: "Re: [PATCH 05/10] gpio: mockup: improve the debugfs input sanitization"
In reply to: Andy Shevchenko: "Re: [PATCH 05/10] gpio: mockup: improve the debugfs input sanitization"
Next in thread: Bartosz Golaszewski: "Re: [PATCH 05/10] gpio: mockup: improve the debugfs input sanitization"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]