Re: [PATCH net 1/2] net: dsa: realtek: fix out-of-bounds access

From: Ahmad Fatoum
Date: Wed Mar 22 2023 - 11:51:18 EST

Next message: kernel test robot: "arch/x86/entry/vdso/vdso32/../vgetcpu.c:13:1: error: no previous prototype for '__vdso_getcpu'"
Previous message: Christian Brauner: "Re: [PATCH net-next v2 1/3] scm: add SO_PASSPIDFD and SCM_PIDFD"
In reply to: Jakub Kicinski: "Re: [PATCH net 1/2] net: dsa: realtek: fix out-of-bounds access"
Next in thread: Jakub Kicinski: "Re: [PATCH net 1/2] net: dsa: realtek: fix out-of-bounds access"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 17.03.23 05:07, Jakub Kicinski wrote:
> On Wed, 15 Mar 2023 14:09:15 +0100 Ahmad Fatoum wrote:
>> - priv = devm_kzalloc(&mdiodev->dev, sizeof(*priv), GFP_KERNEL);
>> + priv = devm_kzalloc(&mdiodev->dev, sizeof(*priv) + var->chip_data_sz, GFP_KERNEL);
>
> size_add() ?
> Otherwise some static checker is going to soon send us a patch saying
> this can overflow. Let's save ourselves the hassle.

The exact same line is already in realtek-smi. Would you prefer I send
a follow-up patch for net-next which switches over both files to size_add
or should I send a v2?

Cheers,
Ahmad

>

--
Pengutronix e.K. | |
Steuerwalder Str. 21 | http://www.pengutronix.de/ |
31137 Hildesheim, Germany | Phone: +49-5121-206917-0 |
Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |

Next message: kernel test robot: "arch/x86/entry/vdso/vdso32/../vgetcpu.c:13:1: error: no previous prototype for '__vdso_getcpu'"
Previous message: Christian Brauner: "Re: [PATCH net-next v2 1/3] scm: add SO_PASSPIDFD and SCM_PIDFD"
In reply to: Jakub Kicinski: "Re: [PATCH net 1/2] net: dsa: realtek: fix out-of-bounds access"
Next in thread: Jakub Kicinski: "Re: [PATCH net 1/2] net: dsa: realtek: fix out-of-bounds access"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]