| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <Z1d8HVO4gXench5V@visitorckw-System-Product-Name> Date: Tue, 10 Dec 2024 07:24:13 +0800 From: Kuan-Wei Chiu <visitorckw@...il.com> To: peterz@...radead.org, mingo@...hat.com, acme@...nel.org, namhyung@...nel.org Cc: mark.rutland@....com, alexander.shishkin@...ux.intel.com, jolsa@...nel.org, irogers@...gle.com, adrian.hunter@...el.com, kan.liang@...ux.intel.com, jserv@...s.ncku.edu.tw, chuang@...nycu.edu.tw, dave@...olabs.net, linux-perf-users@...r.kernel.org, linux-kernel@...r.kernel.org, stable@...r.kernel.org Subject: Re: [PATCH] perf bench: Fix undefined behavior in cmpworker() On Mon, Dec 09, 2024 at 10:57:28PM +0800, Kuan-Wei Chiu wrote: > The comparison function cmpworker() does not comply with the C > standard's requirements for qsort() comparison functions. Specifically, > it returns 0 when w1->tid < w2->tid, which is incorrect. According to > the standard, the function must return a negative value in such cases > to preserve proper ordering. > > This violation causes undefined behavior, potentially leading to issues > such as memory corruption in certain versions of glibc [1]. > > Fix the issue by returning -1 when w1->tid < w2->tid, ensuring > compliance with the C standard and preventing undefined behavior. > I reviewed my commit message again and thought it might be clearer to explicitly mention, as in the previous patch, that the issue stems from violating symmetry and transitivity. The current cmpworker() can result in x > y but y = x, leading to undefined behavior. I'll wait for review comments before updating the patch description. Regards, Kuan-Wei
Powered by blists - more mailing lists