9 Jul
2025
9 Jul
'25
3:23 p.m.
On Wed, Jul 09, 2025 at 04:51:48PM +0200, Benjamin Tissoires wrote:
hid_hw_raw_request() is actually useful to ensure the provided buffer and length are valid. Directly calling in the low level transport driver function bypassed those checks and allowed invalid paramto be used.
Don't worry too much about the sanity checks. If they had been in place, we wouldn't have learned about the bugs in __hid_request()!
Alan Stern