Re: [PATCH v3 3/7] kprobes: validate the symbol name length

[PATCH v3 0/7] powerpc: a few kprobe fixes and refactoring · Naveen N. Rao <hidden> · 2017-04-19
[PATCH v3 2/7] powerpc: kprobes: fix handling of function offsets on ABIv2 · Naveen N. Rao <hidden> · 2017-04-19
Re: [v3,2/7] powerpc: kprobes: fix handling of function offsets on ABIv2 · Michael Ellerman <hidden> · 2017-04-24
[PATCH v3 3/7] kprobes: validate the symbol name length · Naveen N. Rao <hidden> · 2017-04-19
Re: [PATCH v3 3/7] kprobes: validate the symbol name length · Masami Hiramatsu <mhiramat@kernel.org> · 2017-04-19
Re: [PATCH v3 3/7] kprobes: validate the symbol name length · Naveen N. Rao <hidden> · 2017-04-19
Re: [PATCH v3 3/7] kprobes: validate the symbol name length · Masami Hiramatsu <mhiramat@kernel.org> · 2017-04-21
Re: [PATCH v3 3/7] kprobes: validate the symbol name length · Naveen N. Rao <hidden> · 2017-04-23
Re: [PATCH v3 3/7] kprobes: validate the symbol name length · Masami Hiramatsu <mhiramat@kernel.org> · 2017-04-25
Re: [PATCH v3 3/7] kprobes: validate the symbol name length · Michael Ellerman <mpe@ellerman.id.au> · 2017-04-20
Re: [PATCH v3 3/7] kprobes: validate the symbol name length · Naveen N. Rao <hidden> · 2017-04-20
[PATCH v4 3/7] kprobes: validate the symbol name provided during probe registration · Naveen N. Rao <hidden> · 2017-04-21
Re: [PATCH v4 3/7] kprobes: validate the symbol name provided during probe registration · Paul Clarke <hidden> · 2017-04-21
Re: [PATCH v4 3/7] kprobes: validate the symbol name provided during probe registration · Naveen N. Rao <hidden> · 2017-04-21
Re: [PATCH v4 3/7] kprobes: validate the symbol name provided during probe registration · Masami Hiramatsu <mhiramat@kernel.org> · 2017-04-21
Re: [PATCH v4 3/7] kprobes: validate the symbol name provided during probe registration · Michael Ellerman <mpe@ellerman.id.au> · 2017-04-22
Re: [PATCH v4 3/7] kprobes: validate the symbol name provided during probe registration · Naveen N. Rao <hidden> · 2017-04-23
[PATCH v4 4/7] powerpc/kprobes: Use safer string functions in kprobe_lookup_name() · Naveen N. Rao <hidden> · 2017-04-21
Re: [PATCH v4 4/7] powerpc/kprobes: Use safer string functions in kprobe_lookup_name() · Paul Clarke <hidden> · 2017-04-21
Re: [PATCH v4 4/7] powerpc/kprobes: Use safer string functions in kprobe_lookup_name() · Paul Clarke <hidden> · 2017-04-21
Re: [PATCH v4 4/7] powerpc/kprobes: Use safer string functions in kprobe_lookup_name() · Paul Clarke <hidden> · 2017-04-21
Re: [PATCH v4 4/7] powerpc/kprobes: Use safer string functions in kprobe_lookup_name() · Naveen N. Rao <hidden> · 2017-04-23
[PATCH v3 4/7] powerpc: kprobes: use safer string functions in kprobe_lookup_name() · Naveen N. Rao <hidden> · 2017-04-19
RE: [PATCH v3 4/7] powerpc: kprobes: use safer string functions in kprobe_lookup_name() · David Laight <hidden> · 2017-04-21
[PATCH v3 5/7] powerpc: kprobes: factor out code to emulate instruction into a helper · Naveen N. Rao <hidden> · 2017-04-19
Re: [PATCH v3 5/7] powerpc: kprobes: factor out code to emulate instruction into a helper · Masami Hiramatsu <mhiramat@kernel.org> · 2017-04-19
Re: [v3, 5/7] powerpc: kprobes: factor out code to emulate instruction into a helper · Michael Ellerman <hidden> · 2017-04-24
[PATCH v3 1/7] kprobes: convert kprobe_lookup_name() to a function · Naveen N. Rao <hidden> · 2017-04-19
Re: [v3,1/7] kprobes: convert kprobe_lookup_name() to a function · Michael Ellerman <hidden> · 2017-04-24
[PATCH v3 6/7] powerpc: kprobes: emulate instructions on kprobe handler re-entry · Naveen N. Rao <hidden> · 2017-04-19
Re: [PATCH v3 6/7] powerpc: kprobes: emulate instructions on kprobe handler re-entry · Masami Hiramatsu <mhiramat@kernel.org> · 2017-04-19
Re: [PATCH v3 6/7] powerpc: kprobes: emulate instructions on kprobe handler re-entry · Naveen N. Rao <hidden> · 2017-04-19
Re: [PATCH v3 6/7] powerpc: kprobes: emulate instructions on kprobe handler re-entry · Michael Ellerman <mpe@ellerman.id.au> · 2017-04-20
Re: [PATCH v3 6/7] powerpc: kprobes: emulate instructions on kprobe handler re-entry · Masami Hiramatsu <mhiramat@kernel.org> · 2017-04-21
Re: [v3, 6/7] powerpc: kprobes: emulate instructions on kprobe handler re-entry · Michael Ellerman <hidden> · 2017-04-24
[PATCH v3 7/7] powerpc: kprobes: remove duplicate saving of msr · Naveen N. Rao <hidden> · 2017-04-19
Re: [PATCH v3 7/7] powerpc: kprobes: remove duplicate saving of msr · Masami Hiramatsu <mhiramat@kernel.org> · 2017-04-19
Re: [v3,7/7] powerpc: kprobes: remove duplicate saving of msr · Michael Ellerman <hidden> · 2017-04-23

From: Naveen N. Rao <hidden>
Date: 2017-04-20 07:21:09
Also in: lkml

Excerpts from Michael Ellerman's message of April 20, 2017 11:38:

"Naveen N. Rao" [off-list ref] writes:
=20

quoted

diff --git a/kernel/kprobes.c b/kernel/kprobes.c
index 6a128f3a7ed1..bb86681c8a10 100644
--- a/kernel/kprobes.c
+++ b/kernel/kprobes.c

@@ -1382,6 +1382,28 @@ bool within_kprobe_blacklist(unsigned long addr)
 	return false;
 }

=20
+bool is_valid_kprobe_symbol_name(const char *name)
+{
+	size_t sym_len;
+	char *s;
+
+	s =3D strchr(name, ':');
+	if (s) {
+		sym_len =3D strnlen(s+1, KSYM_NAME_LEN);
+		if (sym_len <=3D 0 || sym_len >=3D KSYM_NAME_LEN)
+			return false;
+		sym_len =3D (size_t)(s - name);
+		if (sym_len <=3D 0 || sym_len >=3D MODULE_NAME_LEN)
+			return false;
+	} else {
+		sym_len =3D strnlen(name, MODULE_NAME_LEN);
+		if (sym_len <=3D 0 || sym_len >=3D MODULE_NAME_LEN)
+			return false;
+	}

=20
I think this is probably more elaborate than it needs to be.
=20
Why not just check the string is <=3D (MODULE_NAME_LEN + KSYM_NAME_LEN) ?

Yes, that would be sufficient for now.

It's probably just me being paranoid, but I felt it's good to have=20
stricter checks for user-provided strings, to guard against future=20
changes to how we process this.

- Naveen

=

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help