Project

General

Profile

Actions
Copy link

Bug #781

closed
MD MD

Racy string input from userspace can yield to unreadable traces

Bug #781: Racy string input from userspace can yield to unreadable traces

Added by Mathieu Desnoyers over 11 years ago. Updated over 11 years ago.

Status:
Resolved
Priority:
High
Assignee:
Mathieu Desnoyers
Target version:
LTTng - 2.4
Start date:
04/14/2014
Due date:
% Done:

100%

Estimated time:

Description

The attached program yield to unreadable traces when tracing system calls.

We need to fix this by ensuring that we allow input strings to change underneath between the length computation and copy into the buffers. It needs to be done with padding rather than zeroing any extra space, because otherwise Babeltrace will expect the following field right after the first null terminating character.

Babeltrace error example:

[error] Event id 26212 is outside range.
[error] Reading event failed.
Error printing trace.

Files

Download all files
race-chown-name.c (1.44 KB) race-chown-name.c Mathieu Desnoyers, 04/14/2014 03:14 PM
fix-modules-strcpy.patch (18.4 KB) fix-modules-strcpy.patch Mathieu Desnoyers, 04/14/2014 03:20 PM

MD Updated by Mathieu Desnoyers over 11 years ago Actions
Copy link
 #1

MD Updated by Mathieu Desnoyers over 11 years ago Actions
Copy link
 #2

  • Target version set to 2.4

MD Updated by Mathieu Desnoyers over 11 years ago Actions
Copy link
 #3

  • Status changed from Feedback to Resolved
  • % Done changed from 0 to 100
Actions
Copy link

Also available in: PDF Atom