a58015d638
Linux VM on Hyper-V crashes with the latest mainline: [ 4.069624] detected buffer overflow in strcpy [ 4.077733] kernel BUG at lib/string.c:1149! .. [ 4.085819] RIP: 0010:fortify_panic+0xf/0x11 ... [ 4.085819] Call Trace: [ 4.085819] acpi_device_add.cold.15+0xf2/0xfb [ 4.085819] acpi_add_single_object+0x2a6/0x690 [ 4.085819] acpi_bus_check_add+0xc6/0x280 [ 4.085819] acpi_ns_walk_namespace+0xda/0x1aa [ 4.085819] acpi_walk_namespace+0x9a/0xc2 [ 4.085819] acpi_bus_scan+0x78/0x90 [ 4.085819] acpi_scan_init+0xfa/0x248 [ 4.085819] acpi_init+0x2c1/0x321 [ 4.085819] do_one_initcall+0x44/0x1d0 [ 4.085819] kernel_init_freeable+0x1ab/0x1f4 This is because of the recent buffer overflow detection in the commit 6a39e62abbaf ("lib: string.h: detect intra-object overflow in fortified string functions") Here acpi_device_bus_id->bus_id can only hold 14 characters, while the the acpi_device_hid(device) returns a 22-char string "HYPER_V_GEN_COUNTER_V1". Per ACPI Spec v6.2, Section 6.1.5 _HID (Hardware ID), if the ID is a string, it must be of the form AAA#### or NNNN####, i.e. 7 chars or 8 chars. The field bus_id in struct acpi_device_bus_id was originally defined as char bus_id[9], and later was enlarged to char bus_id[15] in 2007 in the commit bb0958544f3c ("ACPI: use more understandable bus_id for ACPI devices") Fix the issue by changing the field bus_id to const char *, and use kstrdup_const() to initialize it. Signed-off-by: Dexuan Cui <decui@microsoft.com> Tested-By: Jethro Beekman <jethro@fortanix.com> [ rjw: Subject change, whitespace adjustment ] Cc: All applicable <stable@vger.kernel.org> Signed-off-by: Rafael J. Wysocki <rafael.j.wysocki@intel.com>
266 lines
9.1 KiB
C
266 lines
9.1 KiB
C
/* SPDX-License-Identifier: GPL-2.0-only */
|
|
/*
|
|
* acpi/internal.h
|
|
* For use by Linux/ACPI infrastructure, not drivers
|
|
*
|
|
* Copyright (c) 2009, Intel Corporation.
|
|
*/
|
|
|
|
#ifndef _ACPI_INTERNAL_H_
|
|
#define _ACPI_INTERNAL_H_
|
|
|
|
#define PREFIX "ACPI: "
|
|
|
|
int early_acpi_osi_init(void);
|
|
int acpi_osi_init(void);
|
|
acpi_status acpi_os_initialize1(void);
|
|
int acpi_scan_init(void);
|
|
#ifdef CONFIG_PCI
|
|
void acpi_pci_root_init(void);
|
|
void acpi_pci_link_init(void);
|
|
#else
|
|
static inline void acpi_pci_root_init(void) {}
|
|
static inline void acpi_pci_link_init(void) {}
|
|
#endif
|
|
void acpi_processor_init(void);
|
|
void acpi_platform_init(void);
|
|
void acpi_pnp_init(void);
|
|
void acpi_int340x_thermal_init(void);
|
|
#ifdef CONFIG_ARM_AMBA
|
|
void acpi_amba_init(void);
|
|
#else
|
|
static inline void acpi_amba_init(void) {}
|
|
#endif
|
|
int acpi_sysfs_init(void);
|
|
void acpi_gpe_apply_masked_gpes(void);
|
|
void acpi_container_init(void);
|
|
void acpi_memory_hotplug_init(void);
|
|
#ifdef CONFIG_ACPI_HOTPLUG_IOAPIC
|
|
void pci_ioapic_remove(struct acpi_pci_root *root);
|
|
int acpi_ioapic_remove(struct acpi_pci_root *root);
|
|
#else
|
|
static inline void pci_ioapic_remove(struct acpi_pci_root *root) { return; }
|
|
static inline int acpi_ioapic_remove(struct acpi_pci_root *root) { return 0; }
|
|
#endif
|
|
#ifdef CONFIG_ACPI_DOCK
|
|
void register_dock_dependent_device(struct acpi_device *adev,
|
|
acpi_handle dshandle);
|
|
int dock_notify(struct acpi_device *adev, u32 event);
|
|
void acpi_dock_add(struct acpi_device *adev);
|
|
#else
|
|
static inline void register_dock_dependent_device(struct acpi_device *adev,
|
|
acpi_handle dshandle) {}
|
|
static inline int dock_notify(struct acpi_device *adev, u32 event) { return -ENODEV; }
|
|
static inline void acpi_dock_add(struct acpi_device *adev) {}
|
|
#endif
|
|
#ifdef CONFIG_X86
|
|
void acpi_cmos_rtc_init(void);
|
|
#else
|
|
static inline void acpi_cmos_rtc_init(void) {}
|
|
#endif
|
|
int acpi_rev_override_setup(char *str);
|
|
|
|
void acpi_sysfs_add_hotplug_profile(struct acpi_hotplug_profile *hotplug,
|
|
const char *name);
|
|
int acpi_scan_add_handler_with_hotplug(struct acpi_scan_handler *handler,
|
|
const char *hotplug_profile_name);
|
|
void acpi_scan_hotplug_enabled(struct acpi_hotplug_profile *hotplug, bool val);
|
|
|
|
#ifdef CONFIG_DEBUG_FS
|
|
extern struct dentry *acpi_debugfs_dir;
|
|
void acpi_debugfs_init(void);
|
|
#else
|
|
static inline void acpi_debugfs_init(void) { return; }
|
|
#endif
|
|
#ifdef CONFIG_PCI
|
|
void acpi_lpss_init(void);
|
|
#else
|
|
static inline void acpi_lpss_init(void) {}
|
|
#endif
|
|
|
|
void acpi_apd_init(void);
|
|
|
|
acpi_status acpi_hotplug_schedule(struct acpi_device *adev, u32 src);
|
|
bool acpi_queue_hotplug_work(struct work_struct *work);
|
|
void acpi_device_hotplug(struct acpi_device *adev, u32 src);
|
|
bool acpi_scan_is_offline(struct acpi_device *adev, bool uevent);
|
|
|
|
acpi_status acpi_sysfs_table_handler(u32 event, void *table, void *context);
|
|
void acpi_scan_table_handler(u32 event, void *table, void *context);
|
|
|
|
/* --------------------------------------------------------------------------
|
|
Device Node Initialization / Removal
|
|
-------------------------------------------------------------------------- */
|
|
#define ACPI_STA_DEFAULT (ACPI_STA_DEVICE_PRESENT | ACPI_STA_DEVICE_ENABLED | \
|
|
ACPI_STA_DEVICE_UI | ACPI_STA_DEVICE_FUNCTIONING)
|
|
|
|
extern struct list_head acpi_bus_id_list;
|
|
|
|
struct acpi_device_bus_id {
|
|
const char *bus_id;
|
|
unsigned int instance_no;
|
|
struct list_head node;
|
|
};
|
|
|
|
int acpi_device_add(struct acpi_device *device,
|
|
void (*release)(struct device *));
|
|
void acpi_init_device_object(struct acpi_device *device, acpi_handle handle,
|
|
int type, unsigned long long sta,
|
|
struct acpi_device_info *info);
|
|
int acpi_device_setup_files(struct acpi_device *dev);
|
|
void acpi_device_remove_files(struct acpi_device *dev);
|
|
void acpi_device_add_finalize(struct acpi_device *device);
|
|
void acpi_free_pnp_ids(struct acpi_device_pnp *pnp);
|
|
bool acpi_device_is_present(const struct acpi_device *adev);
|
|
bool acpi_device_is_battery(struct acpi_device *adev);
|
|
bool acpi_device_is_first_physical_node(struct acpi_device *adev,
|
|
const struct device *dev);
|
|
int acpi_bus_register_early_device(int type);
|
|
|
|
/* --------------------------------------------------------------------------
|
|
Device Matching and Notification
|
|
-------------------------------------------------------------------------- */
|
|
struct acpi_device *acpi_companion_match(const struct device *dev);
|
|
int __acpi_device_uevent_modalias(struct acpi_device *adev,
|
|
struct kobj_uevent_env *env);
|
|
|
|
/* --------------------------------------------------------------------------
|
|
Power Resource
|
|
-------------------------------------------------------------------------- */
|
|
int acpi_power_init(void);
|
|
void acpi_power_resources_list_free(struct list_head *list);
|
|
int acpi_extract_power_resources(union acpi_object *package, unsigned int start,
|
|
struct list_head *list);
|
|
int acpi_add_power_resource(acpi_handle handle);
|
|
void acpi_power_add_remove_device(struct acpi_device *adev, bool add);
|
|
int acpi_power_wakeup_list_init(struct list_head *list, int *system_level);
|
|
int acpi_device_sleep_wake(struct acpi_device *dev,
|
|
int enable, int sleep_state, int dev_state);
|
|
int acpi_power_get_inferred_state(struct acpi_device *device, int *state);
|
|
int acpi_power_on_resources(struct acpi_device *device, int state);
|
|
int acpi_power_transition(struct acpi_device *device, int state);
|
|
|
|
/* --------------------------------------------------------------------------
|
|
Device Power Management
|
|
-------------------------------------------------------------------------- */
|
|
int acpi_device_get_power(struct acpi_device *device, int *state);
|
|
int acpi_wakeup_device_init(void);
|
|
|
|
/* --------------------------------------------------------------------------
|
|
Processor
|
|
-------------------------------------------------------------------------- */
|
|
#ifdef CONFIG_ARCH_MIGHT_HAVE_ACPI_PDC
|
|
void acpi_early_processor_set_pdc(void);
|
|
#else
|
|
static inline void acpi_early_processor_set_pdc(void) {}
|
|
#endif
|
|
|
|
#ifdef CONFIG_X86
|
|
void acpi_early_processor_osc(void);
|
|
#else
|
|
static inline void acpi_early_processor_osc(void) {}
|
|
#endif
|
|
|
|
/* --------------------------------------------------------------------------
|
|
Embedded Controller
|
|
-------------------------------------------------------------------------- */
|
|
struct acpi_ec {
|
|
acpi_handle handle;
|
|
int gpe;
|
|
int irq;
|
|
unsigned long command_addr;
|
|
unsigned long data_addr;
|
|
bool global_lock;
|
|
unsigned long flags;
|
|
unsigned long reference_count;
|
|
struct mutex mutex;
|
|
wait_queue_head_t wait;
|
|
struct list_head list;
|
|
struct transaction *curr;
|
|
spinlock_t lock;
|
|
struct work_struct work;
|
|
unsigned long timestamp;
|
|
unsigned long nr_pending_queries;
|
|
bool busy_polling;
|
|
unsigned int polling_guard;
|
|
};
|
|
|
|
extern struct acpi_ec *first_ec;
|
|
|
|
/* If we find an EC via the ECDT, we need to keep a ptr to its context */
|
|
/* External interfaces use first EC only, so remember */
|
|
typedef int (*acpi_ec_query_func) (void *data);
|
|
|
|
void acpi_ec_init(void);
|
|
void acpi_ec_ecdt_probe(void);
|
|
void acpi_ec_dsdt_probe(void);
|
|
void acpi_ec_block_transactions(void);
|
|
void acpi_ec_unblock_transactions(void);
|
|
int acpi_ec_add_query_handler(struct acpi_ec *ec, u8 query_bit,
|
|
acpi_handle handle, acpi_ec_query_func func,
|
|
void *data);
|
|
void acpi_ec_remove_query_handler(struct acpi_ec *ec, u8 query_bit);
|
|
|
|
#ifdef CONFIG_PM_SLEEP
|
|
void acpi_ec_flush_work(void);
|
|
bool acpi_ec_dispatch_gpe(void);
|
|
#endif
|
|
|
|
|
|
/*--------------------------------------------------------------------------
|
|
Suspend/Resume
|
|
-------------------------------------------------------------------------- */
|
|
#ifdef CONFIG_ACPI_SYSTEM_POWER_STATES_SUPPORT
|
|
extern bool acpi_s2idle_wakeup(void);
|
|
extern int acpi_sleep_init(void);
|
|
#else
|
|
static inline bool acpi_s2idle_wakeup(void) { return false; }
|
|
static inline int acpi_sleep_init(void) { return -ENXIO; }
|
|
#endif
|
|
|
|
#ifdef CONFIG_ACPI_SLEEP
|
|
void acpi_sleep_proc_init(void);
|
|
int suspend_nvs_alloc(void);
|
|
void suspend_nvs_free(void);
|
|
int suspend_nvs_save(void);
|
|
void suspend_nvs_restore(void);
|
|
#else
|
|
static inline void acpi_sleep_proc_init(void) {}
|
|
static inline int suspend_nvs_alloc(void) { return 0; }
|
|
static inline void suspend_nvs_free(void) {}
|
|
static inline int suspend_nvs_save(void) { return 0; }
|
|
static inline void suspend_nvs_restore(void) {}
|
|
#endif
|
|
|
|
/*--------------------------------------------------------------------------
|
|
Device properties
|
|
-------------------------------------------------------------------------- */
|
|
#define ACPI_DT_NAMESPACE_HID "PRP0001"
|
|
|
|
void acpi_init_properties(struct acpi_device *adev);
|
|
void acpi_free_properties(struct acpi_device *adev);
|
|
|
|
#ifdef CONFIG_X86
|
|
void acpi_extract_apple_properties(struct acpi_device *adev);
|
|
#else
|
|
static inline void acpi_extract_apple_properties(struct acpi_device *adev) {}
|
|
#endif
|
|
|
|
/*--------------------------------------------------------------------------
|
|
Watchdog
|
|
-------------------------------------------------------------------------- */
|
|
|
|
#ifdef CONFIG_ACPI_WATCHDOG
|
|
void acpi_watchdog_init(void);
|
|
#else
|
|
static inline void acpi_watchdog_init(void) {}
|
|
#endif
|
|
|
|
#ifdef CONFIG_ACPI_LPIT
|
|
void acpi_init_lpit(void);
|
|
#else
|
|
static inline void acpi_init_lpit(void) { }
|
|
#endif
|
|
|
|
#endif /* _ACPI_INTERNAL_H_ */
|