[PATCH] perf: fix raw sample size if no sampling data is attached

From: Robert Richter
Date: Fri May 07 2010 - 09:49:56 EST

Next message: Matthew Wilcox: "Re: unified page and buffer cache? (was: readahead on directories)"
Previous message: Alan Cox: "Re: Driver for a SmartCard interface on a SoC"
Next in thread: Robert Richter: "[PATCH] perf: fix raw sample size if no sampling data is attached"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The header size of a raw sample is not included in the total size of a
raw data sample. Thus, if no data is attached the size must be
null. In this case a buffer overflow may occur when copying the
sampling data.

Signed-off-by: Robert Richter <robert.richter@xxxxxxx>
---
kernel/perf_event.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/kernel/perf_event.c b/kernel/perf_event.c
index 9dbe8cd..f6ddae9 100644
--- a/kernel/perf_event.c
+++ b/kernel/perf_event.c
@@ -3229,7 +3229,7 @@ void perf_output_sample(struct perf_output_handle *handle,
u32 size;
u32 data;
} raw = {
- .size = sizeof(u32),
+ .size = 0,
.data = 0,
};
perf_output_put(handle, raw);
--
1.7.0.3

--
Advanced Micro Devices, Inc.
Operating System Research Center
email: robert.richter@xxxxxxx

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Matthew Wilcox: "Re: unified page and buffer cache? (was: readahead on directories)"
Previous message: Alan Cox: "Re: Driver for a SmartCard interface on a SoC"
Next in thread: Robert Richter: "[PATCH] perf: fix raw sample size if no sampling data is attached"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]