| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 04 Dec 2012 22:57:17 -0500 From: "Chas Williams (CONTRACTOR)" <chas@....nrl.navy.mil> To: Chen Gang <gang.chen@...anux.com> cc: David Miller <davem@...emloft.net>, netdev <netdev@...r.kernel.org> Subject: Re: [Suggestion] net/atm : for sprintf, need check the total write length whether larger than a page. In message <50BEA2CB.9000800@...anux.com>,Chen Gang writes: >> - for (i = 0; i < (ESI_LEN - 1); i++) >> - pos += sprintf(pos, "%02x:", adev->esi[i]); >> - pos += sprintf(pos, "%02x\n", adev->esi[i]); >> >> - return pos - buf; >> + return scnprintf(buf, PAGE_SIZE, "%pM\n", adev->esi); >> } >> > > "%p" seems print a pointer, not contents of pointer (is it correct ?) > will it change the original display format to outside ? %pM means format this pointer as a mac address. it didnt exist when the atm stack was originally written but can be used now to save a bit of messy code. >> - pos += sprintf(pos, "\n"); >> + count += scnprintf(buf + count, PAGE_SIZE - count, "\n"); ... > need we judge whether count >= PAGE_SIZE ? count will eventually make PAGE_SIZE - count reach 0 at which point, scnprintf() won't be able to write into the buffer. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists