git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Arnaldo Carvalho de Melo <acme@redhat.com>
	Sat, 2 May 2026 17:47:38 +0000 (14:47 -0300)
committer	Arnaldo Carvalho de Melo <acme@redhat.com>
	Fri, 29 May 2026 14:44:34 +0000 (11:44 -0300)
commit	6e803f1e0198f436d512f9b0eebd89ec2a85ac85
tree	d9407db721e3e6c09362bc411336b7cf5a12c9dd	tree \| snapshot
parent	1c9d2ac2ead70d4d7c70e7f1276d68ca86e15fa4	commit \| diff

perf tools: Harden compressed event processing

Add several hardening checks to the compressed event decompression
pipeline:

1. Guard against decomp_last_rem underflow: check that
   decomp_last->head does not exceed decomp_last->size before
   subtracting.  A u64 underflow here would produce a huge
   decomp_len, causing an oversized mmap allocation.

2. Validate comp_mmap_len from the HEADER_COMPRESSED feature
   section: reject values that are not 4K-aligned or smaller than
   4096.  The downstream decompression path checks allocation
   sizes against SIZE_MAX, which handles 32-bit safety.

3. Validate COMPRESSED event header size: reject events where
   header.size is too small to contain the fixed struct fields,
   preventing underflow in the payload size calculation.

4. Validate COMPRESSED2 event data_size: check that data_size
   does not exceed the available payload (header.size minus the
   fixed struct fields) for the newer compressed format.

5. Reject compressed events when the HEADER_COMPRESSED feature
   is missing from the file header, which means no decompression
   context was initialized.

Reported-by: sashiko-bot@kernel.org # Running on a local machine
Reviewed-by: Ian Rogers <irogers@google.com>
Cc: Jiri Olsa <jolsa@kernel.org>
Cc: Namhyung Kim <namhyung@kernel.org>
Assisted-by: Claude:claude-opus-4.6-1m
Signed-off-by: Arnaldo Carvalho de Melo <acme@redhat.com>

tools/perf/util/header.c		diff \| blob \| blame \| history
tools/perf/util/tool.c		diff \| blob \| blame \| history