Re: [PATCH v2] ptp: ocp: Limit SMA/signal/freq counts in show/store functions

From: Vadim Fedorenko
Date: Thu May 08 2025 - 07:29:19 EST

Next message: Greg Kroah-Hartman: "[PATCH 5.15 00/55] 5.15.182-rc2 review"
Previous message: Florian Fainelli: "Re: [PATCH 6.1 00/97] 6.1.138-rc1 review"
In reply to: Sagi Maimon: "[PATCH v2] ptp: ocp: Limit SMA/signal/freq counts in show/store functions"
Next in thread: Simon Horman: "Re: [PATCH v2] ptp: ocp: Limit SMA/signal/freq counts in show/store functions"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 08/05/2025 08:19, Sagi Maimon wrote:

The sysfs show/store operations could access uninitialized elements in
the freq_in[], signal_out[], and sma[] arrays, leading to NULL pointer
dereferences. This patch introduces u8 fields (nr_freq_in, nr_signal_out,
nr_sma) to track the actual number of initialized elements, capping the
maximum at 4 for each array. The affected show/store functions are updated to
respect these limits, preventing out-of-bounds access and ensuring safe
array handling.

Signed-off-by: Sagi Maimon <maimon.sagi@xxxxxxxxx>
---
Addressed comments from Simon Horman:
- https://www.spinics.net/lists/netdev/msg1089986.html
Changes since v1:
- Increase label buffer size from 8 to 16 bytes to prevent potential buffer
overflow warnings from GCC 14.2.0 during string formatting.
---

Reviewed-by: Vadim Fedorenko <vadim.fedorenko@xxxxxxxxx>

Next message: Greg Kroah-Hartman: "[PATCH 5.15 00/55] 5.15.182-rc2 review"
Previous message: Florian Fainelli: "Re: [PATCH 6.1 00/97] 6.1.138-rc1 review"
In reply to: Sagi Maimon: "[PATCH v2] ptp: ocp: Limit SMA/signal/freq counts in show/store functions"
Next in thread: Simon Horman: "Re: [PATCH v2] ptp: ocp: Limit SMA/signal/freq counts in show/store functions"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]