kobject: sanitize argument for format string Unlike kobject_set_name(), the kset_create_and_add() interface does not provide a way to use format strings, so make sure that the interface cannot be abused accidentally. It looks like all current callers use static strings, so there's no existing flaw. Signed-off-by: Kees Cook <keescook@chromium.org> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

commit: b7165ebbf0898bad9aaeddfa22b918e94ed90e07 [log] [tgz]
author: Kees Cook <keescook@chromium.org> Thu Jun 06 13:52:19 2013 -0700
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Fri Jun 07 16:05:50 2013 -0700
tree: 1256297e5ed27757724770a5f6f5a40589be031f
parent: fc60bb8339b66183f40ea9a001538c958f6d2c9e [diff] [blame]
diff --git a/lib/kobject.c b/lib/kobject.c
index b7e29a6..4a1f33d 100644
--- a/lib/kobject.c
+++ b/lib/kobject.c

@@ -805,7 +805,7 @@
 	kset = kzalloc(sizeof(*kset), GFP_KERNEL);
 	if (!kset)
 		return NULL;
-	retval = kobject_set_name(&kset->kobj, name);
+	retval = kobject_set_name(&kset->kobj, "%s", name);
 	if (retval) {
 		kfree(kset);
 		return NULL;
commit	b7165ebbf0898bad9aaeddfa22b918e94ed90e07	[log] [tgz]
author	Kees Cook <keescook@chromium.org>	Thu Jun 06 13:52:19 2013 -0700
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	Fri Jun 07 16:05:50 2013 -0700
tree	1256297e5ed27757724770a5f6f5a40589be031f
parent	fc60bb8339b66183f40ea9a001538c958f6d2c9e [diff] [blame]