| Message ID | 20230306160016.4459-23-tzimmermann@suse.de |
|---|---|
| State | New |
| Headers |
Return-Path: <linux-kernel-owner@vger.kernel.org>
Delivered-To: ouuuleilei@gmail.com
Received: by 2002:a5d:5915:0:0:0:0:0 with SMTP id v21csp1923827wrd;
Mon, 6 Mar 2023 08:04:54 -0800 (PST)
X-Google-Smtp-Source:
AK7set/7EA0gcXcOZ2uu9Sd7q42cABJYYLMwge2lI8AomuownEkkMSmaV5AwtDkXOVwNFOcaM+n3
X-Received: by 2002:a17:90b:4b41:b0:234:f4a:8985 with SMTP id
mi1-20020a17090b4b4100b002340f4a8985mr12258269pjb.15.1678118694077;
Mon, 06 Mar 2023 08:04:54 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1678118694; cv=none;
d=google.com; s=arc-20160816;
b=HkCp5HtTu4NVeyVot5br1kfF2ZiNq7h0+/x9WGhQgkEh3ebYap6ovUet9MeRYlmtWo
6/YpWzo3ZdVBVuqHgp7NpjQm8rBIV4gcgPiLI+Cc1Wntb08riVuxEvLNfMOf0CpeyP5G
IHiIWErf3OD5jJIyuG+t2JxYelY4HazQEWtrAlN2Pn1LxkH9By6Cvm4DZlpzg1s9aszR
XuTxNHbLXIrnUHb4y8znJSDnv5iCJ/6SX5K9wQ2hgTQ+ChuVagW7jWLbiPz75YbFw+y9
lfcaekS1KhMyyli13ACQSdP8plTIzGuuzR0Ysk8Y/OQxCcFfZmwwW3J1rs3qgVmNkIkQ
n7UA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
s=arc-20160816;
h=list-id:precedence:content-transfer-encoding:mime-version
:references:in-reply-to:message-id:date:subject:cc:to:from
:dkim-signature:dkim-signature;
bh=ePH+vsZYxu4JG+mfGZow29tKllWJJQzJ3bWyonsD+Gs=;
b=dX+Q4nRCmfsrXbfXMZCA06b9whq8dEHsnlScXXGnW50GYN0+8Ek3MlmLuV8/evUFvI
/Oj3cQl9RLeJYS927zLlvExfc/NGS6bGzjlwsTs5Ac+Q1R8lsvs/9HidmRoU2T5KLoaB
yHO7gQ5sQU2R1TRIcPaPxZnhSogNVFGEEIPsdwNwhl3lqpOJof72nAqb/K0UlmGlIQkK
zGlYfgwqHXFoDLfM8YLb0ifBdiLxQHerwso7GCFn6qVNVBkwthfuJQTHTcZ3whHzbFVm
pySMYs7gXg/JWZCp2htHrDjoqguML3eaubuOr3G/ypd5pSm8u6vN3J16mgq4fal4F+sW
Sllw==
ARC-Authentication-Results: i=1; mx.google.com;
dkim=pass header.i=@suse.de header.s=susede2_rsa header.b="L/dTGMFt";
dkim=neutral (no key) header.i=@suse.de header.s=susede2_ed25519;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=suse.de
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
by mx.google.com with ESMTP id
r207-20020a632bd8000000b004db77bd5bb8si9084261pgr.700.2023.03.06.08.04.40;
Mon, 06 Mar 2023 08:04:54 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
dkim=pass header.i=@suse.de header.s=susede2_rsa header.b="L/dTGMFt";
dkim=neutral (no key) header.i=@suse.de header.s=susede2_ed25519;
spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org
designates 2620:137:e000::1:20 as permitted sender)
smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=suse.de
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
id S229558AbjCFQBm (ORCPT <rfc822;toshivichauhan@gmail.com>
+ 99 others); Mon, 6 Mar 2023 11:01:42 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:41368 "EHLO
lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
with ESMTP id S230389AbjCFQAe (ORCPT
<rfc822;linux-kernel@vger.kernel.org>);
Mon, 6 Mar 2023 11:00:34 -0500
Received: from smtp-out2.suse.de (smtp-out2.suse.de [195.135.220.29])
by lindbergh.monkeyblade.net (Postfix) with ESMTPS id DCB992410D;
Mon, 6 Mar 2023 08:00:33 -0800 (PST)
Received: from imap2.suse-dmz.suse.de (imap2.suse-dmz.suse.de
[192.168.254.74])
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange X25519 server-signature ECDSA (P-521) server-digest
SHA512)
(No client certificate requested)
by smtp-out2.suse.de (Postfix) with ESMTPS id 885E41FE00;
Mon, 6 Mar 2023 16:00:32 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=suse.de;
s=susede2_rsa;
t=1678118432;
h=from:from:reply-to:date:date:message-id:message-id:to:to:cc:cc:
mime-version:mime-version:
content-transfer-encoding:content-transfer-encoding:
in-reply-to:in-reply-to:references:references;
bh=ePH+vsZYxu4JG+mfGZow29tKllWJJQzJ3bWyonsD+Gs=;
b=L/dTGMFtUOLj0kNeAJwfnmKNsHsRs6k76a4WAHVkbosYY/HwD13HOMmCZYC0boybuM+PWS
IocjSC69fha5rCaQB7Fvfh0AKtrmtoRsZfCy3NJJnMW78f08QXssu2yqtTmVdOsO7yK49l
QjbLXsfJj4qAqhoGJWenec7c/ggIpKM=
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=suse.de;
s=susede2_ed25519; t=1678118432;
h=from:from:reply-to:date:date:message-id:message-id:to:to:cc:cc:
mime-version:mime-version:
content-transfer-encoding:content-transfer-encoding:
in-reply-to:in-reply-to:references:references;
bh=ePH+vsZYxu4JG+mfGZow29tKllWJJQzJ3bWyonsD+Gs=;
b=Hla2Rb1vfU+0FJJXUzcnNBAPpJeQUqG4Lit3v0jNDQG/gcO2vlN1BTesMdyY6GQw9mB6Iy
amza4IBQ+Zear9CA==
Received: from imap2.suse-dmz.suse.de (imap2.suse-dmz.suse.de
[192.168.254.74])
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange X25519 server-signature ECDSA (P-521) server-digest
SHA512)
(No client certificate requested)
by imap2.suse-dmz.suse.de (Postfix) with ESMTPS id 35DE513513;
Mon, 6 Mar 2023 16:00:32 +0000 (UTC)
Received: from dovecot-director2.suse.de ([192.168.254.65])
by imap2.suse-dmz.suse.de with ESMTPSA
id 0GP8CyAOBmQ/PwAAMHmgww
(envelope-from <tzimmermann@suse.de>); Mon, 06 Mar 2023 16:00:32 +0000
From: Thomas Zimmermann <tzimmermann@suse.de>
To: deller@gmx.de, paulus@samba.org, benh@kernel.crashing.org,
linux@armlinux.org.uk, pjones@redhat.com, timur@kernel.org,
adaplas@gmail.com, s.hauer@pengutronix.de, shawnguo@kernel.org,
mbroemme@libmpq.org, thomas@winischhofer.net,
James.Bottomley@HansenPartnership.com, spock@gentoo.org,
sudipm.mukherjee@gmail.com, teddy.wang@siliconmotion.com,
geert+renesas@glider.be, corbet@lwn.net
Cc: linux-fbdev@vger.kernel.org, dri-devel@lists.freedesktop.org,
linux-kernel@vger.kernel.org,
Thomas Zimmermann <tzimmermann@suse.de>
Subject: [PATCH 22/99] fbdev/fsl-diu-fb: Duplicate video-mode option string
Date: Mon, 6 Mar 2023 16:58:59 +0100
Message-Id: <20230306160016.4459-23-tzimmermann@suse.de>
X-Mailer: git-send-email 2.39.2
In-Reply-To: <20230306160016.4459-1-tzimmermann@suse.de>
References: <20230306160016.4459-1-tzimmermann@suse.de>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-4.4 required=5.0 tests=BAYES_00,DKIM_SIGNED,
DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_MED,SPF_HELO_NONE,
SPF_PASS autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
X-getmail-retrieved-from-mailbox: =?utf-8?q?INBOX?=
X-GMAIL-THRID: =?utf-8?q?1759634987616414560?=
X-GMAIL-MSGID: =?utf-8?q?1759634987616414560?=
|
| Series |
fbdev: Fix memory leak in option parsing
|
|
Commit Message
Thomas Zimmermann
March 6, 2023, 3:58 p.m. UTC
Assume that the driver does not own the option string or its substrings
and hence duplicate the option string for the video mode. The driver only
parses the option string once as part of module initialization, so use
a static buffer to store the duplicated mode option. Linux automatically
frees the memory upon releasing the module.
Done in preparation of switching the driver to struct option_iter and
constifying the option string.
Signed-off-by: Thomas Zimmermann <tzimmermann@suse.de>
---
drivers/video/fbdev/fsl-diu-fb.c | 13 +++++++++++--
1 file changed, 11 insertions(+), 2 deletions(-)
Comments
On Mon, Mar 6, 2023 at 10:01 AM Thomas Zimmermann <tzimmermann@suse.de> wrote: > > Assume that the driver does not own the option string or its substrings > and hence duplicate the option string for the video mode. The driver only > parses the option string once as part of module initialization, so use > a static buffer to store the duplicated mode option. Linux automatically > frees the memory upon releasing the module. So after module_init is finished, mode_option_buf[] no longer exists? > + static char mode_option_buf[256]; > + int ret; > + > + ret = snprintf(mode_option_buf, sizeof(mode_option_buf), "%s", opt); > + if (WARN(ret < 0, "fsl-diu-fb: ignoring invalid option, ret=%d\n", ret)) > + continue; > + if (WARN(ret >= sizeof(mode_option_buf), "fsl-diu-fb: option too long\n")) > + continue; > + fb_mode = mode_option_buf; If so, then I'm not sure that's going to work. fb_mode is used after module_init, in install_fb(), which is called by fsl_diu_probe().
Hi Am 06.03.23 um 21:04 schrieb Timur Tabi: > On Mon, Mar 6, 2023 at 10:01 AM Thomas Zimmermann <tzimmermann@suse.de> wrote: >> >> Assume that the driver does not own the option string or its substrings >> and hence duplicate the option string for the video mode. The driver only >> parses the option string once as part of module initialization, so use >> a static buffer to store the duplicated mode option. Linux automatically >> frees the memory upon releasing the module. > > So after module_init is finished, mode_option_buf[] no longer exists? Does the __init attribute on a function affect the static variables in that function? Best regards Thomas > >> + static char mode_option_buf[256]; >> + int ret; >> + >> + ret = snprintf(mode_option_buf, sizeof(mode_option_buf), "%s", opt); >> + if (WARN(ret < 0, "fsl-diu-fb: ignoring invalid option, ret=%d\n", ret)) >> + continue; >> + if (WARN(ret >= sizeof(mode_option_buf), "fsl-diu-fb: option too long\n")) >> + continue; >> + fb_mode = mode_option_buf; > > If so, then I'm not sure that's going to work. fb_mode is used after > module_init, in install_fb(), which is called by fsl_diu_probe(). -- Thomas Zimmermann Graphics Driver Developer SUSE Software Solutions Germany GmbH Maxfeldstr. 5, 90409 Nürnberg, Germany (HRB 36809, AG Nürnberg) Geschäftsführer: Ivo Totev
On Tue, Mar 7, 2023 at 2:28 AM Thomas Zimmermann <tzimmermann@suse.de> wrote: > > So after module_init is finished, mode_option_buf[] no longer exists? > > Does the __init attribute on a function affect the static variables in > that function? That is an excellent question. https://stackoverflow.com/questions/64558614/what-happens-to-local-static-identifiers-in-init-function I don't think the compiler is naturally aware of whatever section a variable or function is placed in, so it can't really know that mode_option_buf[] is suppose to have a limited lifetime. Either way, the code seems wrong. If mode_option_buf[] is marked as __initdata, then it will disappear before the probe() function is called. If mode_option_buf[] remains resident, then we are wasting 256 bytes.
Hi Am 08.03.23 um 17:26 schrieb Timur Tabi: > On Tue, Mar 7, 2023 at 2:28 AM Thomas Zimmermann <tzimmermann@suse.de> wrote: >>> So after module_init is finished, mode_option_buf[] no longer exists? >> >> Does the __init attribute on a function affect the static variables in >> that function? > > That is an excellent question. > > https://stackoverflow.com/questions/64558614/what-happens-to-local-static-identifiers-in-init-function > > I don't think the compiler is naturally aware of whatever section a > variable or function is placed in, so it can't really know that > mode_option_buf[] is suppose to have a limited lifetime. > > Either way, the code seems wrong. If mode_option_buf[] is marked as > __initdata, then it will disappear before the probe() function is > called. > > If mode_option_buf[] remains resident, then we are wasting 256 bytes. I'm preparing an update to this series. The string will be allocated and freed with kstrdup() and kfree(). So these issues should be resolved then. Best regards Thomas -- Thomas Zimmermann Graphics Driver Developer SUSE Software Solutions Germany GmbH Maxfeldstr. 5, 90409 Nürnberg, Germany (HRB 36809, AG Nürnberg) Geschäftsführer: Ivo Totev
diff --git a/drivers/video/fbdev/fsl-diu-fb.c b/drivers/video/fbdev/fsl-diu-fb.c index e332017c6af6..e01281959062 100644 --- a/drivers/video/fbdev/fsl-diu-fb.c +++ b/drivers/video/fbdev/fsl-diu-fb.c @@ -1858,8 +1858,17 @@ static int __init fsl_diu_setup(char *options) } else if (!strncmp(opt, "bpp=", 4)) { if (!kstrtoul(opt + 4, 10, &val)) default_bpp = val; - } else - fb_mode = opt; + } else { + static char mode_option_buf[256]; + int ret; + + ret = snprintf(mode_option_buf, sizeof(mode_option_buf), "%s", opt); + if (WARN(ret < 0, "fsl-diu-fb: ignoring invalid option, ret=%d\n", ret)) + continue; + if (WARN(ret >= sizeof(mode_option_buf), "fsl-diu-fb: option too long\n")) + continue; + fb_mode = mode_option_buf; + } } return 0;