livepatch/x86: Fix incorrect use of 'strncpy' (2f75922c) · Commits · Summer2022 / 22b970497

Commit 2f75922c authored 3 years ago by

Zheng Yejian Committed by Yang Yingliang 3 years ago

livepatch/x86: Fix incorrect use of 'strncpy'

hulk inclusion
category: bugfix
bugzilla: 186253, https://gitee.com/openeuler/kernel/issues/I4TYA9


CVE: NA

-----------------------------------------------

Refer to following codes, 'strncpy' would stop copying if Null character
encountered. For example, when 'code' is "53 be 00 0a 05", 'old_code'
would be "53 be 00 00 00".
    > 276 static unsigned char *klp_old_code(unsigned char *code)
    > 277 {
    > 278         static union klp_code_union old_code;
    > 279
    > 280         strncpy(old_code.code, code, JMP_E9_INSN_SIZE);
    > 281         return old_code.code;
    > 282 }

As a result, the instructions cannot be restored completely, and the
system becomes abnormal.

Fixes: 7e2ab91e ("livepatch/x86: support livepatch without ftrace")
Signed-off-by: Zheng Yejian <zhengyejian1@huawei.com>
Reviewed-by: Kuohai Xu <xukuohai@huawei.com>
Signed-off-by: Yang Yingliang <yangyingliang@huawei.com>

parent 527f1d87

No related branches found

No related tags found

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing with 1 addition and 1 deletion

+ 1

− 1

View file @ 2f75922c

@@ -277,7 +277,7 @@ static unsigned char *klp_old_code(unsigned char *code)
+{
 	static union klp_code_union old_code;
 	strncpy(old_code.code, code, JMP_E9_INSN_SIZE);
 	memcpy(old_code.code, code, JMP_E9_INSN_SIZE);
 	return old_code.code;
+}
-...

Please register or to comment