[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v3] xen/hypfs: check the return value of snprintf to avoid leaking stack accidently

To: Xenia Ragiadakou <burzalodowa@xxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
From: Juergen Gross <jgross@xxxxxxxx>
Date: Thu, 4 Aug 2022 16:55:40 +0200
Delivery-date: Thu, 04 Aug 2022 14:55:56 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

On 04.08.22 15:30, Xenia Ragiadakou wrote:

The function snprintf() returns the number of characters that would have been
written in the buffer if the buffer size had been sufficiently large,
not counting the terminating null character.
Hence, the value returned is not guaranteed to be smaller than the buffer size.
Check the return value of snprintf to prevent leaking stack contents to the
guest by accident.

Also, for debug builds, add an assertion to ensure that the assumption made on
the size of the destination buffer still holds.

Signed-off-by: Xenia Ragiadakou <burzalodowa@xxxxxxxxx>


Reviewed-by: Juergen Gross <jgross@xxxxxxxx>


Juergen

Attachment: OpenPGP_0xB0DE9DD628BF132F.asc
Description: OpenPGP public key

Attachment: OpenPGP_signature
Description: OpenPGP digital signature

References:
- [PATCH v3] xen/hypfs: check the return value of snprintf to avoid leaking stack accidently
  - From: Xenia Ragiadakou

Prev by Date: Re: [PATCH v3 07/10] IOMMU/AMD: wire common device reserved memory API
Next by Date: [PATCH 3/4] x86/entry: move .init.text section higher up in the code for readability
Previous by thread: [PATCH v3] xen/hypfs: check the return value of snprintf to avoid leaking stack accidently
Next by thread: Re: [PATCH v3 04/10] console: support multiple serial console simultaneously
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.