mirror of
http://git.haproxy.org/git/haproxy.git/
synced 2025-01-27 16:23:18 +00:00
BUG/MINOR: debug: fix pointer check in debug_parse_cli_task()
Task pointer check in debug_parse_cli_task() computes the theoric end
address of provided task pointer to check if it is valid or not thanks to
may_access() helper function.
However, relative ending address is calculated by adding task size to 't'
pointer (which is a struct task pointer), thus it will result to incorrect
address since the compiler automatically translates 't + x' to
't + x * sizeof(*t)' internally (with sizeof(*t) != 1 here).
Solving the issue by using 'ptr' (which is the void * raw address) as
starting address to prevent automatic address scaling.
This was revealed by coverity, see GH #2157.
No backport is needed, unless 9867987
("DEBUG: cli: add "debug dev task"
to show/wake/expire/kill tasks and tasklets") gets backported.
This commit is contained in:
parent
7428adaf0d
commit
b6a24a52a2
@ -1004,7 +1004,7 @@ static int debug_parse_cli_task(char **args, char *payload, struct appctx *appct
|
||||
t = ptr;
|
||||
caller = t->caller;
|
||||
msg = NULL;
|
||||
task_ok = may_access(t + sizeof(*t) - 1);
|
||||
task_ok = may_access(ptr + sizeof(*t) - 1);
|
||||
|
||||
chunk_reset(&trash);
|
||||
resolve_sym_name(&trash, NULL, (const void *)t->process);
|
||||
|
Loading…
Reference in New Issue
Block a user