Re: [PATCH] drivers/comedi: copy userspace array safely

From: Greg Kroah-Hartman
Date: Fri Nov 03 2023 - 01:53:39 EST

Next message: Mika Westerberg: "Re: [PATCH v1 2/3] pinctrl: intel: Add a generic Intel pin control platform driver"
Previous message: Sumit Garg: "Re: [PATCH v4 1/2] tee: optee: Fix supplicant based device enumeration"
In reply to: Philipp Stanner: "[PATCH] drivers/comedi: copy userspace array safely"
Next in thread: Philipp Stanner: "Re: [PATCH] drivers/comedi: copy userspace array safely"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Nov 02, 2023 at 08:08:49PM +0100, Philipp Stanner wrote:
> comedi_fops.c utilizes memdup_user() to copy a userspace array. This
> does not check for an overflow.

Is there potential for an overflow today?

>
> Use the new wrapper memdup_array_user() to copy the array more safely.

How about saying something like:
"Use the new function memdup_array_user() in case things change
in the future which would prevent overflows if something were to
change in the size of the structures".

Or something to the affect of "all is good today, but make it easy to be
correct in the future as well".

thanks,

greg k-h

Next message: Mika Westerberg: "Re: [PATCH v1 2/3] pinctrl: intel: Add a generic Intel pin control platform driver"
Previous message: Sumit Garg: "Re: [PATCH v4 1/2] tee: optee: Fix supplicant based device enumeration"
In reply to: Philipp Stanner: "[PATCH] drivers/comedi: copy userspace array safely"
Next in thread: Philipp Stanner: "Re: [PATCH] drivers/comedi: copy userspace array safely"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]