powerpc/security: Fix debugfs data leak on 32-bit (3b05a1e5) · Commits · Mirrors / git.yoctoproject.org / linux-yocto · GitLab

Commit 3b05a1e5 authored Oct 21, 2019 by

Geert Uytterhoeven Committed by Michael Ellerman Nov 05, 2019

powerpc/security: Fix debugfs data leak on 32-bit

"powerpc_security_features" is "unsigned long", i.e. 32-bit or 64-bit,
depending on the platform (PPC_FSL_BOOK3E or PPC_BOOK3S_64).  Hence
casting its address to "u64 *", and calling debugfs_create_x64() is
wrong, and leaks 32-bit of nearby data to userspace on 32-bit platforms.

While all currently defined SEC_FTR_* security feature flags fit in
32-bit, they all have "ULL" suffixes to make them 64-bit constants.
Hence fix the leak by changing the type of "powerpc_security_features"
(and the parameter types of its accessors) to "u64".  This also allows
to drop the cast.

Fixes: 398af571

 ("powerpc/security: Show powerpc_security_features in debugfs")
Signed-off-by: Geert Uytterhoeven <geert+renesas@glider.be>
Signed-off-by: Michael Ellerman <mpe@ellerman.id.au>
Link: https://lore.kernel.org/r/20191021142309.28105-1-geert+renesas@glider.be

parent 16f6b67c

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit d5c4594b
· Feb 11, 2020

mentioned in commit d5c4594b

mentioned in commit d5c4594b2043c4eefaae3dbf6f5deb198e33b89f

Toggle commit list
mirror @mirror
mentioned in commit fa05b950
· Apr 15, 2020

mentioned in commit fa05b950

mentioned in commit fa05b9500815f47d7880646389d7544c6eeb5835

Toggle commit list

Please register or to comment