Re: [PATCH] libbpf: Fix integer overflow issue

From: Al Viro
Date: Mon Oct 07 2024 - 13:23:03 EST

Next message: Kurt Borja: "Re: [PATCH] Dell AWCC platform_profile support"
Previous message: Jonathan Corbet: "Re: [PATCH] doc:it_IT: update I2C summary"
In reply to: I Hsin Cheng: "[PATCH] libbpf: Fix integer overflow issue"
Next in thread: Song Liu: "Re: [PATCH] libbpf: Fix integer overflow issue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Oct 08, 2024 at 12:46:48AM +0800, I Hsin Cheng wrote:
> Fix integer overflow issue discovered by coverity scan, where
> "bpf_program_fd()" might return a value less than zero. Assignment of
> "prog_fd" to "kern_data" will result in integer overflow in that case.
>
> Do a pre-check after the program fd is returned, if it's negative we
> should ignore this program and move on, or maybe add some error handling
> mechanism here.

We already had a mechanism there - the one you'd just disabled.
Namely, storing an unsigned long value with MSB set at given
offset.

Next message: Kurt Borja: "Re: [PATCH] Dell AWCC platform_profile support"
Previous message: Jonathan Corbet: "Re: [PATCH] doc:it_IT: update I2C summary"
In reply to: I Hsin Cheng: "[PATCH] libbpf: Fix integer overflow issue"
Next in thread: Song Liu: "Re: [PATCH] libbpf: Fix integer overflow issue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]