From patchwork Mon Oct 25 08:33:05 2021
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Yafang Shao <laoar.shao@gmail.com>
X-Patchwork-Id: 12581031
Return-Path: <SRS0=AeVH=PN=kvack.org=owner-linux-mm@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 26E94C433EF
	for <linux-mm@archiver.kernel.org>; Mon, 25 Oct 2021 08:33:49 +0000 (UTC)
Received: from kanga.kvack.org (kanga.kvack.org [205.233.56.17])
	by mail.kernel.org (Postfix) with ESMTP id CF8AE60EE9
	for <linux-mm@archiver.kernel.org>; Mon, 25 Oct 2021 08:33:48 +0000 (UTC)
DMARC-Filter: OpenDMARC Filter v1.4.1 mail.kernel.org CF8AE60EE9
Authentication-Results: mail.kernel.org;
 dmarc=fail (p=none dis=none) header.from=gmail.com
Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=kvack.org
Received: by kanga.kvack.org (Postfix)
	id 6D69D6B0074; Mon, 25 Oct 2021 04:33:48 -0400 (EDT)
Received: by kanga.kvack.org (Postfix, from userid 40)
	id 68667940007; Mon, 25 Oct 2021 04:33:48 -0400 (EDT)
X-Delivered-To: int-list-linux-mm@kvack.org
Received: by kanga.kvack.org (Postfix, from userid 63042)
	id 5021F6B0078; Mon, 25 Oct 2021 04:33:48 -0400 (EDT)
X-Delivered-To: linux-mm@kvack.org
Received: from forelay.hostedemail.com (smtprelay0136.hostedemail.com
 [216.40.44.136])
	by kanga.kvack.org (Postfix) with ESMTP id 465916B0074
	for <linux-mm@kvack.org>; Mon, 25 Oct 2021 04:33:48 -0400 (EDT)
Received: from smtpin15.hostedemail.com (10.5.19.251.rfc1918.com
 [10.5.19.251])
	by forelay05.hostedemail.com (Postfix) with ESMTP id F0BF018037D44
	for <linux-mm@kvack.org>; Mon, 25 Oct 2021 08:33:47 +0000 (UTC)
X-FDA: 78734296494.15.801E01A
Received: from mail-pl1-f180.google.com (mail-pl1-f180.google.com
 [209.85.214.180])
	by imf13.hostedemail.com (Postfix) with ESMTP id 833F81045C81
	for <linux-mm@kvack.org>; Mon, 25 Oct 2021 08:33:42 +0000 (UTC)
Received: by mail-pl1-f180.google.com with SMTP id t11so7394657plq.11
        for <linux-mm@kvack.org>; Mon, 25 Oct 2021 01:33:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20210112;
        h=from:to:cc:subject:date:message-id:in-reply-to:references
         :mime-version:content-transfer-encoding;
        bh=7jKAATsl3Or1OXSx7HWzFCkHaZKf4EVahxCQwpQ+O5E=;
        b=TJLriZ5mdvjw59l3C40lhg68iy+fuuT/jguhTtjAocwEu+c8nhtiZgl51JsEcljfGU
         DB3lnJ+73ti9a7qpfCexwR+yJUi+FzWhAy/Jg0rkrHZb/wKiwVwjQbRFtHrD1sxqyLMB
         OusVpdCEsgFi/hiqfbaX0zl8ZaPLsq2cj5n0WWCGk1NvjnK0R8M+Y1OL61mO+BYHAQXo
         MRuuBVIY4v15HGw/VXe3XNBcdznsFM48gmgaB7qVcGfRpToafeCXSEZUlYNfYgwMdBcd
         OD9KcTYFsc9oIwkU6T+9hZWmv0cvSRpaQAB/pmkMdO5QHPU55muhXcsNQaKMj+pjvDmV
         RdTQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to
         :references:mime-version:content-transfer-encoding;
        bh=7jKAATsl3Or1OXSx7HWzFCkHaZKf4EVahxCQwpQ+O5E=;
        b=AAVp9dzVrP05xae6uQl8sCCjYjkDFH4hsdLYhZbaMzt+t1rqXVp4lgMB0G1JzL+OQp
         7G+w8TERywlqO4iHaQ8xvv9uuOYuWBBXEb0wIOqroZ0V10CUUSix7nxFmA4stNSYyGfA
         ilqe3Khc91BeLazeQsJ+2TWtPgjdFNJm94pK1GijMNtu/lJ9qOtTlHi69W56nm3AvJSX
         /xO0iEOf/8Rw/SMooe2SusoGHE//0hMDJwzqgoRGMnzMkIrpVJRfFzxbcQ5isaCnIuDY
         Dl3O/rBqWQIgJJeGuB2Yb1Rhy28m9BZpHUXVY4v5LFf/hwMFLU8s72ziSeuGtNWCHyDF
         H1nA==
X-Gm-Message-State: AOAM533hsAWtugqlFyt5smdcg21don7cv4VmHd49xWQwAGFFw1J023LV
	O0jV9IO1LxgC1HyWr8ZZv8k=
X-Google-Smtp-Source: 
 ABdhPJzYTnld7M84SDgJqip1ULz6qBYAnLfyifxnrJWJrcZvxH4N4k1/v119JIj2PZtcu7zZWBQaxA==
X-Received: by 2002:a17:90a:6788:: with SMTP id
 o8mr23634231pjj.53.1635150826928;
        Mon, 25 Oct 2021 01:33:46 -0700 (PDT)
Received: from localhost.localdomain ([140.82.17.67])
        by smtp.gmail.com with ESMTPSA id
 p13sm2495694pfo.102.2021.10.25.01.33.44
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Mon, 25 Oct 2021 01:33:46 -0700 (PDT)
From: Yafang Shao <laoar.shao@gmail.com>
To: akpm@linux-foundation.org,
	keescook@chromium.org,
	rostedt@goodmis.org,
	mathieu.desnoyers@efficios.com,
	arnaldo.melo@gmail.com,
	pmladek@suse.com,
	peterz@infradead.org,
	viro@zeniv.linux.org.uk,
	valentin.schneider@arm.com,
	qiang.zhang@windriver.com,
	robdclark@chromium.org,
	christian@brauner.io,
	dietmar.eggemann@arm.com,
	mingo@redhat.com,
	juri.lelli@redhat.com,
	vincent.guittot@linaro.org,
	davem@davemloft.net,
	kuba@kernel.org,
	ast@kernel.org,
	daniel@iogearbox.net,
	andrii@kernel.org,
	kafai@fb.com,
	songliubraving@fb.com,
	yhs@fb.com,
	john.fastabend@gmail.com,
	kpsingh@kernel.org,
	dennis.dalessandro@cornelisnetworks.com,
	mike.marciniszyn@cornelisnetworks.com,
	dledford@redhat.com,
	jgg@ziepe.ca
Cc: linux-rdma@vger.kernel.org,
	netdev@vger.kernel.org,
	bpf@vger.kernel.org,
	linux-perf-users@vger.kernel.org,
	linux-fsdevel@vger.kernel.org,
	linux-mm@kvack.org,
	linux-kernel@vger.kernel.org,
	oliver.sang@intel.com,
	lkp@intel.com,
	Yafang Shao <laoar.shao@gmail.com>,
	Andrii Nakryiko <andrii.nakryiko@gmail.com>
Subject: [PATCH v6 02/12] fs/exec: make __get_task_comm always get a nul
 terminated string
Date: Mon, 25 Oct 2021 08:33:05 +0000
Message-Id: <20211025083315.4752-3-laoar.shao@gmail.com>
X-Mailer: git-send-email 2.27.0
In-Reply-To: <20211025083315.4752-1-laoar.shao@gmail.com>
References: <20211025083315.4752-1-laoar.shao@gmail.com>
MIME-Version: 1.0
X-Rspamd-Queue-Id: 833F81045C81
Authentication-Results: imf13.hostedemail.com;
	dkim=pass header.d=gmail.com header.s=20210112 header.b=TJLriZ5m;
	spf=pass (imf13.hostedemail.com: domain of laoar.shao@gmail.com designates
 209.85.214.180 as permitted sender) smtp.mailfrom=laoar.shao@gmail.com;
	dmarc=pass (policy=none) header.from=gmail.com
X-Stat-Signature: fdc66knfi4rhp3yazycws5xwhpxqge19
X-Rspamd-Server: rspam06
X-HE-Tag: 1635150822-181965
X-Bogosity: Ham, tests=bogofilter, spamicity=0.000000, version=1.2.4
Sender: owner-linux-mm@kvack.org
Precedence: bulk
X-Loop: owner-majordomo@kvack.org
List-ID: <linux-mm.kvack.org>

If the dest buffer size is smaller than sizeof(tsk->comm), the buffer
will be without null ternimator, that may cause problem. We can make sure
the buffer size not smaller than comm at the callsite to avoid that
problem, but there may be callsite that we can't easily change.

Using strscpy_pad() instead of strncpy() in __get_task_comm() can make
the string always nul ternimated.

Suggested-by: Kees Cook <keescook@chromium.org>
Suggested-by: Steven Rostedt <rostedt@goodmis.org>
Signed-off-by: Yafang Shao <laoar.shao@gmail.com>
Cc: Mathieu Desnoyers <mathieu.desnoyers@efficios.com>
Cc: Arnaldo Carvalho de Melo <arnaldo.melo@gmail.com>
Cc: Andrii Nakryiko <andrii.nakryiko@gmail.com>
Cc: Peter Zijlstra <peterz@infradead.org>
Cc: Steven Rostedt <rostedt@goodmis.org>
Cc: Al Viro <viro@zeniv.linux.org.uk>
Cc: Kees Cook <keescook@chromium.org>
Cc: Petr Mladek <pmladek@suse.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
---
 fs/exec.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/fs/exec.c b/fs/exec.c
index 404156b5b314..bf2a7a91eeea 100644
--- a/fs/exec.c
+++ b/fs/exec.c
@@ -1209,7 +1209,8 @@ static int unshare_sighand(struct task_struct *me)
 char *__get_task_comm(char *buf, size_t buf_size, struct task_struct *tsk)
 {
 	task_lock(tsk);
-	strncpy(buf, tsk->comm, buf_size);
+	/* The copied value is always null terminated */
+	strscpy_pad(buf, tsk->comm, buf_size);
 	task_unlock(tsk);
 	return buf;
 }