efi: cper: fix snprintf() use in cper_dimm_err_location() (942859d9) · Commits · Mirrors / git.kernel.org / pub_scm_linux_kernel_git_stable_linux · GitLab

Commit 942859d9 authored Apr 21, 2021 by

Rasmus Villemoes Committed by Ard Biesheuvel May 22, 2021

efi: cper: fix snprintf() use in cper_dimm_err_location()



snprintf() should be given the full buffer size, not one less. And it
guarantees nul-termination, so doing it manually afterwards is
pointless.

It's even potentially harmful (though probably not in practice because
CPER_REC_LEN is 256), due to the "return how much would have been
written had the buffer been big enough" semantics. I.e., if the bank
and/or device strings are long enough that the "DIMM location ..."
output gets truncated, writing to msg[n] is a buffer overflow.

Signed-off-by: Rasmus Villemoes <linux@rasmusvillemoes.dk>
Fixes: 3760cd20

 ("CPER: Adjust code flow of some functions")
Signed-off-by: Ard Biesheuvel <ardb@kernel.org>

parent c4039b29

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit 0c380025
· Jun 11, 2021

mentioned in commit 0c380025

mentioned in commit 0c380025c25f89c09b651befa35dac0d4b2124c7

Toggle commit list
mirror @mirror
mentioned in commit dd47a33e
· Jun 11, 2021

mentioned in commit dd47a33e

mentioned in commit dd47a33e11fdd6c9d31570500e6ecc369ba1f08e

Toggle commit list
mirror @mirror
mentioned in commit acc1b80d
· Jun 11, 2021

mentioned in commit acc1b80d

mentioned in commit acc1b80d0d4b9821b4a1b29c4b22419fe279de01

Toggle commit list
mirror @mirror
mentioned in commit fc0138fa
· Jun 11, 2021

mentioned in commit fc0138fa

mentioned in commit fc0138fa0c1ef6ff795b8b995e39c390f25586b5

Toggle commit list
mirror @mirror
mentioned in commit a4ed6029
· Jun 11, 2021

mentioned in commit a4ed6029

mentioned in commit a4ed60297770346f759156e7a0103dcc1acb958d

Toggle commit list

Please register or to comment