Re: [PATCH] perf: prevent overflow in size calculation

From: Cody P Schafer
Date: Thu Jul 19 2012 - 22:51:40 EST

Next message: MyungJoo Ham: "[RESEND PATCH] [CPUFREQ] EXYNOS: bugfix on retrieving old_index fromfreqs.old"
Previous message: Cody Schafer: "[PATCH v2] perf: prevent overflow in size calculation"
In reply to: Cody Schafer: "[PATCH v3] perf: prevent overflow in size calculation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

+ /* Check for overflow when calculating sizeof_sym_hist */
+ if (size > (SIZE_MAX / sizeof(u64)))
+ return -1;

How does it guarantee that the end result which used in zalloc below
would not overflow?

+
+ sizeof_sym_hist = (sizeof(struct sym_hist) + size * sizeof(u64));
notes->src = zalloc(sizeof(*notes->src) + symbol_conf.nr_events * sizeof_sym_hist);
if (notes->src == NULL)
return -1;

Whoops. Thanks for pointing that out.
I've sent a fixed up patch (the check for sizeof_sym_hist wasn't even complete)

--
Cody

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: MyungJoo Ham: "[RESEND PATCH] [CPUFREQ] EXYNOS: bugfix on retrieving old_index fromfreqs.old"
Previous message: Cody Schafer: "[PATCH v2] perf: prevent overflow in size calculation"
In reply to: Cody Schafer: "[PATCH v3] perf: prevent overflow in size calculation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]