lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <CAFnufp3tOKOB=xqe8Ln46n2wBFMDC4XoZpu51xk5B=Acp=L-JA@mail.gmail.com>
Date:   Tue, 3 Nov 2020 12:43:32 +0100
From:   Matteo Croce <mcroce@...ux.microsoft.com>
To:     Petr Mladek <pmladek@...e.com>
Cc:     linux-kernel@...r.kernel.org, Guenter Roeck <linux@...ck-us.net>,
        Arnd Bergmann <arnd@...db.de>, Mike Rapoport <rppt@...nel.org>,
        Kees Cook <keescook@...omium.org>,
        Pavel Tatashin <pasha.tatashin@...een.com>,
        Robin Holt <robinmholt@...il.com>
Subject: Re: [PATCH v2 2/2] reboot: fix parsing of reboot cpu number

On Mon, Nov 2, 2020 at 12:01 PM Petr Mladek <pmladek@...e.com> wrote:
>
> On Sun 2020-11-01 02:57:40, Matteo Croce wrote:
> > On Fri, Oct 30, 2020 at 3:30 PM Petr Mladek <pmladek@...e.com> wrote:
> > >
> > > On Tue 2020-10-27 14:35:45, Matteo Croce wrote:
> > > > From: Matteo Croce <mcroce@...rosoft.com>
> > > >
> > > > The kernel cmdline reboot= argument allows to specify the CPU used
> > > > for rebooting, with the syntax `s####` among the other flags, e.g.
> > > >
> > > >   reboot=soft,s4
> > > >   reboot=warm,s31,force
> > > >
> > > > In the early days the parsing was done with simple_strtoul(), later
> > > > deprecated in favor of the safer kstrtoint() which handles overflow.
> > > >
> > > > But kstrtoint() returns -EINVAL if there are non-digit characters
> > > > in a string, so if this flag is not the last given, it's silently
> > > > ignored as well as the subsequent ones.
> > > >
> > > > To fix it, revert the usage of simple_strtoul(), which is no longer
> > > > deprecated, and restore the old behaviour.
> > > >
> > > > While at it, merge two identical code blocks into one.
> > >
> > > > --- a/kernel/reboot.c
> > > > +++ b/kernel/reboot.c
> > > > @@ -552,25 +552,19 @@ static int __init reboot_setup(char *str)
> > > >
> > > >               case 's':
> > > >               {
> > > > -                     int rc;
> > > > -
> > > > -                     if (isdigit(*(str+1))) {
> > > > -                             rc = kstrtoint(str+1, 0, &reboot_cpu);
> > > > -                             if (rc)
> > > > -                                     return rc;
> > > > -                             if (reboot_cpu >= num_possible_cpus()) {
> > > > -                                     reboot_cpu = 0;
> > > > -                                     return -ERANGE;
> > > > -                             }
> > > > -                     } else if (str[1] == 'm' && str[2] == 'p' &&
> > > > -                                isdigit(*(str+3))) {
> > > > -                             rc = kstrtoint(str+3, 0, &reboot_cpu);
> > > > -                             if (rc)
> > > > -                                     return rc;
> > > > -                             if (reboot_cpu >= num_possible_cpus()) {
> > > > -                                     reboot_cpu = 0;
> > >
> > >                                                      ^^^^^^
> > >
> > > > +                     int cpu;
> > > > +
> > > > +                     /*
> > > > +                      * reboot_cpu is s[mp]#### with #### being the processor
> > > > +                      * to be used for rebooting. Skip 's' or 'smp' prefix.
> > > > +                      */
> > > > +                     str += str[1] == 'm' && str[2] == 'p' ? 3 : 1;
> > > > +
> > > > +                     if (isdigit(str[0])) {
> > > > +                             cpu = simple_strtoul(str, NULL, 0);
> > > > +                             if (cpu >= num_possible_cpus())
> > > >                                       return -ERANGE;
> > > > -                             }
> > > > +                             reboot_cpu = cpu;
> > >
> > > The original value stays when the new one is out of range. It is
> > > small functional change that should get mentioned in the commit
> > > message or better fixed separately.
>
> Ah, I see. From some reason, I assumed that it was defined as
> module_param() or core_param(). Then it would be possible to modify
> it later via /sys.
>
> I am sorry for the noise.
>

Never mind :)

So, is this an ack? Or I need to prepare a v3 with the revert as first patch?

Regards,
-- 
per aspera ad upstream

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ