Re: [PATCH v2] ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE

From: Kees Cook
Date: Thu Nov 18 2021 - 12:20:54 EST

Next message: Mark Brown: "[GIT PULL] SPI fixes for v5.16-rc1"
Previous message: Naveen Naidu: "[PATCH v3 1/1] PCI: Add KUnit tests for __pci_read_base()"
In reply to: Takashi Iwai: "[PATCH v2] ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE"
Next in thread: Dinh Nguyen: "Re: [PATCH v2] ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Nov 18, 2021 at 03:25:08PM +0100, Takashi Iwai wrote:
> When CONFIG_FORTIFY_SOURCE is set, memcpy() checks the potential
> buffer overflow and panics. The code in sofcpga bootstrapping
> contains the memcpy() calls are mistakenly translated as the shorter
> size, hence it triggers a panic as if it were overflowing.
>
> This patch changes the secondary_trampoline and *_end definitions
> to arrays for avoiding the false-positive crash above.
>
> Suggested-by: Kees Cook <keescook@xxxxxxxxxxxx>
> Buglink: https://bugzilla.suse.com/show_bug.cgi?id=1192473
> Link: https://lore.kernel.org/r/20211117193244.31162-1-tiwai@xxxxxxx
> Signed-off-by: Takashi Iwai <tiwai@xxxxxxx>

Reviewed-by: Kees Cook <keescook@xxxxxxxxxxxx>

Thanks!

--
Kees Cook

Next message: Mark Brown: "[GIT PULL] SPI fixes for v5.16-rc1"
Previous message: Naveen Naidu: "[PATCH v3 1/1] PCI: Add KUnit tests for __pci_read_base()"
In reply to: Takashi Iwai: "[PATCH v2] ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE"
Next in thread: Dinh Nguyen: "Re: [PATCH v2] ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]