| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <CAADnVQLpC3-j1g4On95FnHOsfKYaQpeMp4dx4P-ZQqC56tQ5Lg@mail.gmail.com> Date: Wed, 21 Aug 2024 11:39:15 -0700 From: Alexei Starovoitov <alexei.starovoitov@...il.com> To: Jeongjun Park <aha310510@...il.com> Cc: Martin KaFai Lau <martin.lau@...ux.dev>, Alexei Starovoitov <ast@...nel.org>, Daniel Borkmann <daniel@...earbox.net>, Andrii Nakryiko <andrii@...nel.org>, Eddy Z <eddyz87@...il.com>, Song Liu <song@...nel.org>, Yonghong Song <yonghong.song@...ux.dev>, John Fastabend <john.fastabend@...il.com>, KP Singh <kpsingh@...nel.org>, Stanislav Fomichev <sdf@...ichev.me>, Hao Luo <haoluo@...gle.com>, Jiri Olsa <jolsa@...nel.org>, bpf <bpf@...r.kernel.org>, LKML <linux-kernel@...r.kernel.org> Subject: Re: [PATCH bpf] bpf: Refactoring btf_name_valid_identifier() and btf_name_valid_section() On Mon, Aug 19, 2024 at 9:08 AM Jeongjun Park <aha310510@...il.com> wrote: > > Currently, btf_name_valid_identifier() and btf_name_valid_section() are > written in a while loop and use pointer operations, so it takes a long > time to understand the operation of the code. Therefore, I suggest > refactoring the code to make it easier to maintain. imo it's harder to read after refactoring. Pls avoid. > In addition, btf_name_valid_section() does not check for the case where > src[0] is a NULL value, resulting in an out-of-bounds vuln. Therefore, a > check for this should be added. Hmm. Not sure about it. Pls add a selftest that demonstrates the issue and produce a patch to fix just that. Do not mix it with questionable refactoring. pw-bot: cr
Powered by blists - more mailing lists