iommufd/selftest: Fix buffer read overrrun in the dirty test - lwn.git - Linux kernel documentation tree maintained by Jonathan Corbet

diff options

author	Jason Gunthorpe <jgg@nvidia.com>	2024-08-22 11:47:09 -0300
committer	Jason Gunthorpe <jgg@nvidia.com>	2024-08-27 09:47:04 -0300
commit	79ea4a496ab5c970a3a793d863ed8893b1af107c (patch)
tree	2ea7d8b3c5726a2d7bc5320492fe0d6887d2c8d6 /scripts/generate_rust_analyzer.py
parent	1d4684fbe88dc28e2bf79f5e94a432f0469d2dac (diff)
download	lwn-79ea4a496ab5c970a3a793d863ed8893b1af107c.tar.gz lwn-79ea4a496ab5c970a3a793d863ed8893b1af107c.zip

iommufd/selftest: Fix buffer read overrrun in the dirty test

test_bit() is used to read the memory storing the bitmap, however test_bit() always uses a unsigned long 8 byte access. If the bitmap is not an aligned size of 64 bits this will now trigger a KASAN warning reading past the end of the buffer. Properly round the buffer allocation to an unsigned long size. Continue to copy_from_user() using a byte granularity. Fixes: 9560393b830b ("iommufd/selftest: Fix iommufd_test_dirty() to handle <u8 bitmaps") Link: https://patch.msgid.link/r/0-v1-113e8d9e7861+5ae-iommufd_kasan_jgg@nvidia.com Reviewed-by: Joao Martins <joao.m.martins@oracle.com> Reviewed-by: Kevin Tian <kevin.tian@intel.com> Signed-off-by: Jason Gunthorpe <jgg@nvidia.com>

Diffstat (limited to 'scripts/generate_rust_analyzer.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: