Re: [PATCH] efi: fix a race and a buffer overflow while reading efivars via sysfs

From: Vladis Dronov
Date: Wed Mar 04 2020 - 10:45:21 EST

Next message: Sean Christopherson: "Re: [PATCH v9 7/7] KVM: X86: Add user-space access interface for CET MSRs"
Previous message: gregkh@xxxxxxxxxxxxxxxxxxx: "Re: [PATCH 2/2] uio: Prefer MSI(X) interrupts in PCI drivers"
In reply to: joeyli: "Re: [PATCH] efi: fix a race and a buffer overflow while reading efivars via sysfs"
Next in thread: Ard Biesheuvel: "Re: [PATCH] efi: fix a race and a buffer overflow while reading efivars via sysfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello, Ard,

> Wouldn't it be easier to pass a var_data_size stack variable into
> efivar_entry_get(), and only update the value in 'var' if it is <=
> 1024?

I have prepared a v2 patch with an approach you suggest and will send it
out shortly. It indeed simpler and fixes only the overflow bug mentioned.

Could you, please, review it and if you like it, probably, accept it?
In case I've implemented your idea incorrectly, could you, please,
correct me?

Best regards,
Vladis Dronov | Red Hat, Inc. | The Core Kernel | Senior Software Engineer

Next message: Sean Christopherson: "Re: [PATCH v9 7/7] KVM: X86: Add user-space access interface for CET MSRs"
Previous message: gregkh@xxxxxxxxxxxxxxxxxxx: "Re: [PATCH 2/2] uio: Prefer MSI(X) interrupts in PCI drivers"
In reply to: joeyli: "Re: [PATCH] efi: fix a race and a buffer overflow while reading efivars via sysfs"
Next in thread: Ard Biesheuvel: "Re: [PATCH] efi: fix a race and a buffer overflow while reading efivars via sysfs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]