tools: ynl-gen: validate 0 len strings from kernel

[ Upstream commit 4720f9707c783f642332dee3d56dccaefa850e42 ] Strings from the kernel are guaranteed to be null terminated and ynl_attr_validate() checks for this. But it doesn't check if the string has a len of 0, which would cause problems when trying to access data[len - 1]. Fix this by checking that len is positive. Signed-off-by: David Wei <dw@davidwei.uk> Link: https://patch.msgid.link/20250503043050.861238-1-dw@davidwei.uk Signed-off-by: Jakub Kicinski <kuba@kernel.org> Signed-off-by: Sasha Levin <sashal@kernel.org>
author: David Wei <dw@davidwei.uk> 2025-05-02 21:30:50 -0700
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2025-05-29 11:03:12 +0200
commit: 511ea82e344e044aad215a4456ab400a70565e54 (patch)
tree: 87e4fb0421fd63ae87a625f157df6dfc997fea52
parent: 6e9770de024964b1017f99ee94f71967bd6edaeb (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/tools/net/ynl/lib/ynl.c b/tools/net/ynl/lib/ynl.c
index ce32cb35007d..c4da34048ef8 100644
--- a/tools/net/ynl/lib/ynl.c
+++ b/tools/net/ynl/lib/ynl.c
@@ -364,7 +364,7 @@ int ynl_attr_validate(struct ynl_parse_arg *yarg, const struct nlattr *attr)
 		     "Invalid attribute (binary %s)", policy->name);
 		return -1;
 	case YNL_PT_NUL_STR:
-		if ((!policy->len || len <= policy->len) && !data[len - 1])
+		if (len && (!policy->len || len <= policy->len) && !data[len - 1])
 			break;
 		yerr(yarg->ys, YNL_ERROR_ATTR_INVALID,
 		     "Invalid attribute (string %s)", policy->name);
author	David Wei <dw@davidwei.uk>	2025-05-02 21:30:50 -0700
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2025-05-29 11:03:12 +0200
commit	511ea82e344e044aad215a4456ab400a70565e54 (patch)
tree	87e4fb0421fd63ae87a625f157df6dfc997fea52
parent	6e9770de024964b1017f99ee94f71967bd6edaeb (diff)