[LTP] [PATCH v2] sigrelse01: Fix out-of-bounds read when invoking write()
Cyril Hrubis
chrubis@suse.cz
Fri Jul 25 15:11:15 CEST 2025
Hi!
> Signed-off-by: Florian Schmaus <florian.schmaus@codasip.com>
> ---
>
> Changes in v2:
> - remove unnecessary '\n' in tst_resm
>
> testcases/kernel/syscalls/sigrelse/sigrelse01.c | 14 ++++++++------
> 1 file changed, 8 insertions(+), 6 deletions(-)
>
> diff --git a/testcases/kernel/syscalls/sigrelse/sigrelse01.c b/testcases/kernel/syscalls/sigrelse/sigrelse01.c
> index 95754212053e..68d69c3ef5e7 100644
> --- a/testcases/kernel/syscalls/sigrelse/sigrelse01.c
> +++ b/testcases/kernel/syscalls/sigrelse/sigrelse01.c
> @@ -486,12 +486,14 @@ static void child(void)
> * then PASS, otherwise FAIL.
> */
>
> - if (exit_val == EXIT_OK) {
> - (void)memcpy(note, (char *)sig_array, sizeof(sig_array));
> - }
> -
> /* send note to parent and exit */
> - if (write_pipe(pipe_fd[1], note) < 0) {
> + if (exit_val == EXIT_OK) {
> + if (write(pipe_fd[1], sig_array, sizeof(sig_array)) < 0) {
> + tst_resm(TBROK, "write() pipe failed. error:%d %s.", errno, strerror(errno));
^
use | TERRNO instead of printing the
errno manually here.
> + exit(WRITE_BROK);
> + }
> + }
> + else if (write_pipe(pipe_fd[1], note) < 0) {
We follow LKML coding style so the proper way to write this is:
} else if (...) {
...
}
Other than these two minor things the patch looks fine.
--
Cyril Hrubis
chrubis@suse.cz
More information about the ltp
mailing list