From: David Laight <David.Laight@ACULAB.COM>
To: 'Markus Elfring' <Markus.Elfring@web.de>,
"linux-integrity@vger.kernel.org"
<linux-integrity@vger.kernel.org>,
"linux-security-module@vger.kernel.org"
<linux-security-module@vger.kernel.org>,
Dmitry Kasatkin <dmitry.kasatkin@gmail.com>,
James Morris <jmorris@namei.org>,
Mimi Zohar <zohar@linux.ibm.com>,
"Serge E. Hallyn" <serge@hallyn.com>
Cc: LKML <linux-kernel@vger.kernel.org>,
"kernel-janitors@vger.kernel.org"
<kernel-janitors@vger.kernel.org>
Subject: RE: [PATCH] ima: Replace two seq_printf() calls by seq_puts() in ima_show_template_data_ascii()
Date: Wed, 3 Jul 2019 09:16:44 +0000 [thread overview]
Message-ID: <d94bfdb9d53b46059787b9bdd10c5919@AcuMS.aculab.com> (raw)
In-Reply-To: <e96eac40-0745-80b5-6aab-f872e6415031@web.de>
From: Markus Elfring
> Sent: 02 July 2019 20:01
>
> From: Markus Elfring <elfring@users.sourceforge.net>
> Date: Tue, 2 Jul 2019 20:52:21 +0200
>
> Two strings which did not contain a data format specification should be put
> into a sequence. Thus use the corresponding function “seq_puts”.
>
> This issue was detected by using the Coccinelle software.
The two calls are almost certainly absolutely equivalent.
So this is probably just a minor performance improvement in a code
path where it really doesn't matter.
> Signed-off-by: Markus Elfring <elfring@users.sourceforge.net>
> ---
> security/integrity/ima/ima_template_lib.c | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/security/integrity/ima/ima_template_lib.c b/security/integrity/ima/ima_template_lib.c
> index 9fe0ef7f91e2..05636e9b19b1 100644
> --- a/security/integrity/ima/ima_template_lib.c
> +++ b/security/integrity/ima/ima_template_lib.c
> @@ -74,7 +74,7 @@ static void ima_show_template_data_ascii(struct seq_file *m,
> case DATA_FMT_DIGEST_WITH_ALGO:
> buf_ptr = strnchr(field_data->data, buflen, ':');
> if (buf_ptr != field_data->data)
> - seq_printf(m, "%s", field_data->data);
> + seq_puts(m, field_data->data);
>
> /* skip ':' and '\0' */
> buf_ptr += 2;
That code looks highly suspect!
It uses a bounded scan then assumes a '\0' terminated string.
It then adds 2 to a potentially NULL pointer.
About typical for 'security' code :-)
David
-
Registered Address Lakeside, Bramley Road, Mount Farm, Milton Keynes, MK1 1PT, UK
Registration No: 1397386 (Wales)
WARNING: multiple messages have this Message-ID (diff)
From: David Laight <David.Laight@ACULAB.COM>
To: 'Markus Elfring' <Markus.Elfring@web.de>,
"linux-integrity@vger.kernel.org"
<linux-integrity@vger.kernel.org>,
"linux-security-module@vger.kernel.org"
<linux-security-module@vger.kernel.org>,
Dmitry Kasatkin <dmitry.kasatkin@gmail.com>,
James Morris <jmorris@namei.org>,
Mimi Zohar <zohar@linux.ibm.com>,
"Serge E. Hallyn" <serge@hallyn.com>
Cc: LKML <linux-kernel@vger.kernel.org>,
"kernel-janitors@vger.kernel.org"
<kernel-janitors@vger.kernel.org>
Subject: RE: [PATCH] ima: Replace two seq_printf() calls by seq_puts() in ima_show_template_data_ascii()
Date: Wed, 03 Jul 2019 09:16:44 +0000 [thread overview]
Message-ID: <d94bfdb9d53b46059787b9bdd10c5919@AcuMS.aculab.com> (raw)
In-Reply-To: <e96eac40-0745-80b5-6aab-f872e6415031@web.de>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next prev parent reply other threads:[~2019-07-03 9:16 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-07-02 19:00 [PATCH] ima: Replace two seq_printf() calls by seq_puts() in ima_show_template_data_ascii() Markus Elfring
2019-07-02 19:00 ` Markus Elfring
2019-07-03 9:16 ` David Laight [this message]
2019-07-03 9:16 ` David Laight
2019-07-03 9:33 ` Markus Elfring
2019-07-03 9:33 ` Markus Elfring
2019-07-03 11:14 ` [PATCH] " Mimi Zohar
2019-07-03 11:14 ` Mimi Zohar
-- strict thread matches above, loose matches on Subject: below --
2019-07-02 19:00 Markus Elfring
2019-07-02 19:00 ` Markus Elfring
2019-07-02 19:00 Markus Elfring
2019-07-02 19:00 ` Markus Elfring
2019-07-02 19:00 Markus Elfring
2019-07-02 19:00 ` Markus Elfring
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=d94bfdb9d53b46059787b9bdd10c5919@AcuMS.aculab.com \
--to=david.laight@aculab.com \
--cc=Markus.Elfring@web.de \
--cc=dmitry.kasatkin@gmail.com \
--cc=jmorris@namei.org \
--cc=kernel-janitors@vger.kernel.org \
--cc=linux-integrity@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-security-module@vger.kernel.org \
--cc=serge@hallyn.com \
--cc=zohar@linux.ibm.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.