Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(113)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 1031513002: Robust ELF header parsing. (Closed)

Created:
5 years, 9 months ago by halyavin2
Modified:
5 years, 9 months ago
CC:
chromium-reviews, rickyz (no longer on Chrome)
Base URL:
https://chromium.googlesource.com/chromium/src.git@master
Target Ref:
refs/pending/heads/master
Project:
chromium
Visibility:
Public.

Description

Robust ELF header parsing. Check all out-of-bounds errors in ELF header parsing. BUG= none TEST= courgette_unittests Committed: https://crrev.com/c9de6f7ae8bf4b43b239812bb203b2b0e40b86dc Cr-Commit-Position: refs/heads/master@{#322003}

Patch Set 1 #

Total comments: 4

Patch Set 2 : Replace uint32_t with Elf32_Off and add CHECK in ReduceLength #

Unified diffs Side-by-side diffs Delta from patch set Stats (+36 lines, -30 lines) Patch
M courgette/disassembler.h View 1 chunk +5 lines, -0 lines 0 comments Download
M courgette/disassembler.cc View 1 1 chunk +3 lines, -2 lines 0 comments Download
M courgette/disassembler_elf_32.h View 1 chunk +1 line, -1 line 0 comments Download
M courgette/disassembler_elf_32.cc View 1 3 chunks +27 lines, -27 lines 0 comments Download

Messages

Total messages: 12 (4 generated)
halyavin2
This fixes the biggest information leaks and crashes in ELF parser.
5 years, 9 months ago (2015-03-23 05:50:42 UTC) #2
Will Harris
On 2015/03/23 05:50:42, halyavin2 wrote: > This fixes the biggest information leaks and crashes in ...
5 years, 9 months ago (2015-03-23 17:39:03 UTC) #3
rickyz (no longer on Chrome)
lgtm Nice, thanks for fixing these! https://codereview.chromium.org/1031513002/diff/1/courgette/disassembler.cc File courgette/disassembler.cc (right): https://codereview.chromium.org/1031513002/diff/1/courgette/disassembler.cc#newcode128 courgette/disassembler.cc:128: if (reduced_length < ...
5 years, 9 months ago (2015-03-23 23:14:50 UTC) #5
Will Harris
lgtm
5 years, 9 months ago (2015-03-23 23:18:20 UTC) #6
halyavin2
https://codereview.chromium.org/1031513002/diff/1/courgette/disassembler.cc File courgette/disassembler.cc (right): https://codereview.chromium.org/1031513002/diff/1/courgette/disassembler.cc#newcode128 courgette/disassembler.cc:128: if (reduced_length < length_) { On 2015/03/23 23:14:50, rickyz ...
5 years, 9 months ago (2015-03-24 14:35:18 UTC) #7
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1031513002/20001
5 years, 9 months ago (2015-03-24 14:35:48 UTC) #10
commit-bot: I haz the power
Committed patchset #2 (id:20001)
5 years, 9 months ago (2015-03-24 15:40:25 UTC) #11
commit-bot: I haz the power
5 years, 9 months ago (2015-03-24 15:41:12 UTC) #12
Message was sent while issue was closed. 
Patchset 2 (id:??) landed as
https://crrev.com/c9de6f7ae8bf4b43b239812bb203b2b0e40b86dc
Cr-Commit-Position: refs/heads/master@{#322003}

Powered by Google App Engine
This is Rietveld 408576698