From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 129336 invoked by alias); 11 Jun 2018 06:38:54 -0000 Mailing-List: contact elfutils-devel-help@sourceware.org; run by ezmlm Precedence: bulk List-Id: List-Post: List-Help: List-Subscribe: Sender: elfutils-devel-owner@sourceware.org Received: (qmail 128167 invoked by uid 89); 11 Jun 2018 06:38:53 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Checked: by ClamAV 0.99.4 on sourceware.org X-Virus-Found: No X-Spam-SWARE-Status: No, score=-6.9 required=5.0 tests=BAYES_00,GIT_PATCH_1,RCVD_IN_DNSWL_NONE,SPF_PASS autolearn=ham version=3.3.2 spammy=Hx-languages-length:561, calculating X-Spam-Status: No, score=-6.9 required=5.0 tests=BAYES_00,GIT_PATCH_1,RCVD_IN_DNSWL_NONE,SPF_PASS autolearn=ham version=3.3.2 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on sourceware.org X-Spam-Level: X-HELO: gnu.wildebeest.org Received: from wildebeest.demon.nl (HELO gnu.wildebeest.org) (212.238.236.112) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with ESMTP; Mon, 11 Jun 2018 06:38:53 +0000 Received: from tarox.wildebeest.org (tarox.wildebeest.org [172.31.17.39]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by gnu.wildebeest.org (Postfix) with ESMTPSA id E40583000921 for ; Mon, 11 Jun 2018 08:38:50 +0200 (CEST) Received: by tarox.wildebeest.org (Postfix, from userid 1000) id DDB91413CAAC; Mon, 11 Jun 2018 08:38:50 +0200 (CEST) Message-ID: <1528699130.12946.88.camel@klomp.org> Subject: Re: [PATCH] readelf: Calculate max_entries instead of needed bytes (and overflowing). From: Mark Wielaard To: elfutils-devel@sourceware.org Date: Mon, 11 Jun 2018 06:38:00 -0000 In-Reply-To: <1528493613-23730-1-git-send-email-mark@klomp.org> References: <1528493613-23730-1-git-send-email-mark@klomp.org> Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Mailer: Evolution 3.22.6 (3.22.6-14.el7) Mime-Version: 1.0 X-Spam-Flag: NO X-IsSubscribed: yes X-SW-Source: 2018-q2/txt/msg00203.txt.bz2 On Fri, 2018-06-08 at 23:33 +0200, Mark Wielaard wrote: > The afl fuzzer found that we would overflow the needed bytes when > calculating how many index entries would fit in the .debug_loclists > and .debug_rnglists tables. To fix this just calculate the max number > of entries. If the offset entry count is larger than that, do emit > an error, but print up to max_entries of offsets (so the user can > more clearly see what is wrong with their table). Pushed to master.