> -----Original Message----- > From: Hanumanth Pothula <[email protected]> > Sent: Thursday, October 24, 2024 6:55 AM > To: Jerin Jacob <[email protected]> > Cc: [email protected]; [email protected]; [email protected]; > [email protected] > Subject: [PATCH v3 1/1] event/octeontx: resolve possible integer overflow > > The last argument passed to ssovf_parsekv() is an > unsigned char*, but it is accessed as an integer. > This can lead to an integer overflow. > > Hence, make ensure the argument is accessed as a char > and for better error handling use strtol instead of atoi. > > Signed-off-by: Hanumanth Pothula <[email protected]> > --- > > v2: use strtoul instead of strtol > v3: Add value boundry check. Here, value can be either 0 or 1. > ---
Confirmed that it resolves https://bugs.dpdk.org/show_bug.cgi?id=1512. Tested-by: Ali Alnubani <[email protected]> Thanks, Ali
