[0/2] trace-cmd lib: Fix potential integer overflows

Message ID	20240911163653.12606-1-jjindrak@suse.cz (mailing list archive)
Headers	show Received: from smtp-out1.suse.de (smtp-out1.suse.de [195.135.223.130]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id AE2E219F108 for <linux-trace-devel@vger.kernel.org>; Wed, 11 Sep 2024 16:38:17 +0000 (UTC) From: jjindrak@suse.cz To: linux-trace-devel@vger.kernel.org Cc: jjindrak@suse.cz Subject: [PATCH 0/2] trace-cmd lib: Fix potential integer overflows Date: Wed, 11 Sep 2024 18:36:51 +0200 Message-Id: <20240911163653.12606-1-jjindrak@suse.cz> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit default: False [-0.01 / 50.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; MID_CONTAINS_FROM(1.00)[]; R_MISSING_CHARSET(0.50)[]; R_DKIM_ALLOW(-0.20)[suse.cz:s=susede2_rsa,suse.cz:s=susede2_ed25519]; NEURAL_HAM_SHORT(-0.20)[-1.000]; MIME_GOOD(-0.10)[text/plain]; MX_GOOD(-0.01)[]; BAYES_HAM(-0.00)[41.69%]; RBL_SPAMHAUS_BLOCKED_OPENRESOLVER(0.00)[2a07:de40:b281:104:10:150:64:97:from]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCVD_TLS_ALL(0.00)[]; FROM_NO_DN(0.00)[]; ARC_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; RECEIVED_SPAMHAUS_BLOCKED_OPENRESOLVER(0.00)[2a07:de40:b281:106:10:150:64:167:received]; DBL_BLOCKED_OPENRESOLVER(0.00)[imap1.dmz-prg2.suse.org:helo,imap1.dmz-prg2.suse.org:rdns,suse.cz:email,suse.cz:dkim,suse.cz:mid]; FROM_EQ_ENVFROM(0.00)[]; TO_DN_NONE(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; FUZZY_BLOCKED(0.00)[rspamd.com]; TO_MATCH_ENVRCPT_ALL(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; DKIM_SIGNED(0.00)[suse.cz:s=susede2_rsa,suse.cz:s=susede2_ed25519]; SPAMHAUS_XBL(0.00)[2a07:de40:b281:104:10:150:64:97:from]; DKIM_TRACE(0.00)[suse.cz:+]
Series	trace-cmd lib: Fix potential integer overflows \| expand [0/2] trace-cmd lib: Fix potential integer overflows [1/2] trace-cmd lib: Fix potential integer overflow in tracecmd_write_cpu_data() [2/2] trace-cmd lib: Use proper printf format specifiers

Message ID

20240911163653.12606-1-jjindrak@suse.cz (mailing list archive)

Headers

From: jjindrak@suse.cz
To: linux-trace-devel@vger.kernel.org
Cc: jjindrak@suse.cz
Subject: [PATCH 0/2] trace-cmd lib: Fix potential integer overflows
Date: Wed, 11 Sep 2024 18:36:51 +0200
Message-Id: <20240911163653.12606-1-jjindrak@suse.cz>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

trace-cmd lib: Fix potential integer overflows | expand

Message

jjindrak@suse.cz Sept. 11, 2024, 4:36 p.m. UTC

From: Jaroslav Jindrak <jjindrak@suse.cz>

There are two possible integer overflows in libtracecmd when reading
CPU data from a file. The first one can cause the size returned by
stat() to overflow when assigned from off_t to an int, which can then
lead to a the read_size and the file size not matching. The second one
occurs when printing such an error because we use %lld to print an
unsigned long long int. These two overflows can lead to a situation
such as this:

libtracecmd: Invalid argument
  did not match size of 3451486208 to -843481088

Jaroslav Jindrak (2):
  trace-cmd lib: Fix potential integer overflow in
    tracecmd_write_cpu_data()
  trace-cmd lib: Use proper printf format specifiers

 lib/trace-cmd/include/trace-cmd-local.h | 2 +-
 lib/trace-cmd/trace-output.c            | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)