This is the mail archive of the libc-alpha@sourceware.org mailing list for the glibc project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: [PATCH] x86/CET: Don't parse beyond the note end

From: Florian Weimer <fweimer at redhat dot com>
To: "H.J. Lu" <hjl dot tools at gmail dot com>
Cc: GNU C Library <libc-alpha at sourceware dot org>, Carlos O'Donell <carlos at redhat dot com>
Date: Fri, 27 Jul 2018 20:26:24 +0200
Subject: Re: [PATCH] x86/CET: Don't parse beyond the note end
References: <CAMe9rOoAQgbtMzftq6UOG_dMvUL3EtAu2Gk3bu_7=Rdt27F+qw@mail.gmail.com>

On 07/27/2018 08:22 PM, H.J. Lu wrote:

-	  while (1)
+	  while (ptr < ptr_end)
  	    {
  	      unsigned int type = *(unsigned int *) ptr;
  	      unsigned int datasz = *(unsigned int *) (ptr + 4);

You need 1 byte, but 8 bytes. Why is checking for at least 1 bytesufficient here?

I suppose our position is that we do not care about corrupt binaries.Is that justification for writing the check this way?


Thanks,
Florian

Follow-Ups:
- Re: [PATCH] x86/CET: Don't parse beyond the note end
  - From: H.J. Lu

References:
- [PATCH] x86/CET: Don't parse beyond the note end
  - From: H.J. Lu

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]