Received: by 2002:a05:6a10:17d3:0:0:0:0 with SMTP id hz19csp3436392pxb;
        Tue, 20 Apr 2021 08:17:31 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxkooiyOt43Pg90+iLKjCsEcimQwYWAWdxNbw8wEW5/HZN2IcvJMb9DBkJ1T+31NWbdWSBM
X-Received: by 2002:a17:902:7c0d:b029:ec:a243:cf9b with SMTP id x13-20020a1709027c0db02900eca243cf9bmr12285656pll.75.1618931850882;
        Tue, 20 Apr 2021 08:17:30 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1618931850; cv=none;
        d=google.com; s=arc-20160816;
        b=b0o7mo4roei6GLitL3YaLy/RBN1/PxLlsVI9ZDGk6NmpS8hJGQTQZRiz4GKq6wUJuz
         GiKKSNIxQBLJd0Jj62CegvGmon4Y2OeIC/KXDaSgzjurzoevBMvp51m+B3G6yb+xzRtz
         gWhtznlK3vcdcQETZ6qLb++sMzizEopskWmJ7aqolJTrfORo4fb4u34rp5FmQGD8Npz5
         IZ10esjOGLgc63NZVaJh7LNJLyLlbicddoL8ggSyK7/A1SEaGfbKQm+0FaKoJgvo/avc
         k73EpNsai7+YoSmldgDSflNdOUSZLjf6lgyV+pqvp2t5bxtRq3gNiJGQx8R4kAxxVvrh
         XycQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :message-id:date:subject:cc:to:from:dkim-signature;
        bh=p+G9I0twdQ25gtNDzTS0vvubZNpcCb4yzAAC9B7XO08=;
        b=mM6JrRPTl4iGNQbMYGF1Qjh+OU8PU6zxLLYVunFZYaAfRZy7khMVN778aYA8ElxWQe
         gBO9J3s61yOeCUNKUqb29G1oa+84EIiJS4tsvpmWDYnl8KfZQvkYhkaArRBCB45IiFPm
         XqkjczZClxVcpS0I7tLkoAq8oGOV93TzTZgwKjKlx/K5HC/6rmbUqasPx1JQaZoJKbyS
         bbcup0ACZkvm8wmZ+qHXTpaGk0iyEtyYR5szJbSHzCgqdrlYwEXcatoJzMOFXCqhkduG
         ILQ7r5ZppO/qcRRYVwIiffnu7OScmtnTAHZFDOCgZ1l844q3x7E1nuB/neAisls+K19M
         FbSQ==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@linaro.org header.s=google header.b=aVtd2WJo;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id m7si21668087pgn.256.2021.04.20.08.17.18;
        Tue, 20 Apr 2021 08:17:30 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@linaro.org header.s=google header.b=aVtd2WJo;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S232450AbhDTPQi (ORCPT <rfc822;lists.md@gmail.com> + 99 others);
        Tue, 20 Apr 2021 11:16:38 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:33566 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232174AbhDTPQh (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 20 Apr 2021 11:16:37 -0400
Received: from mail-pj1-x102f.google.com (mail-pj1-x102f.google.com [IPv6:2607:f8b0:4864:20::102f])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 4D5C0C06174A
        for <linux-kernel@vger.kernel.org>; Tue, 20 Apr 2021 08:16:06 -0700 (PDT)
Received: by mail-pj1-x102f.google.com with SMTP id j6-20020a17090adc86b02900cbfe6f2c96so20619662pjv.1
        for <linux-kernel@vger.kernel.org>; Tue, 20 Apr 2021 08:16:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=linaro.org; s=google;
        h=from:to:cc:subject:date:message-id:mime-version
         :content-transfer-encoding;
        bh=p+G9I0twdQ25gtNDzTS0vvubZNpcCb4yzAAC9B7XO08=;
        b=aVtd2WJozOwrhWmRHVYpvwf0WF70utvUycTTCVf9m+QkZi+huf3sziTEqkz2LQtEfx
         GJUqOcTvvEqdLcATaoF3wu5t5FfKyqQO7UHuKKQ6cw2OSCYQOLZtf+pXBkhe+Hi2lAxQ
         34llZVzxhqidPIQfrkl+OWFPW00X8jX2g8pWFNKOhZEN7Cl7x/wvC/DLPrD7ZAwRhzIj
         mRNWbxmppJtovmNSR8wSfNtH0Pg698x6Fq/fMC+xtMXBNdkzPh3dOPNUBPuQDENom3LW
         9SnActI/E1zHJbMEKWuVlb0czaYUJMlMH21WB22elXUUhb4SJWe/lC7JF/sdus+VC0rE
         jXjA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version
         :content-transfer-encoding;
        bh=p+G9I0twdQ25gtNDzTS0vvubZNpcCb4yzAAC9B7XO08=;
        b=RUjujZPuXvdT+zyzrg4x+hOMAwgc5MtEG8AWY6A6WyYaMzrEaKjzN+9oq9WInS1PfR
         ziUeTuHlMRmrGgv5CYVFBJf5AXP/kpwdQZPS/QakVPLPvZyErW0TnVObcwjgf3CcsDvC
         BYX4p6u9wIaW4uW351Lgx7J5EkbinzdMSlNMzla5FcWGQAqjQDJTdksmSli1hp14Ks9z
         G4WYLDWRYTsb2K57AlfK+zNDdqkZ5PCUv4ZWsecmoqj74RN8ac5txm7qyoW83NkNXMNZ
         ylIdKIGSYGCG+VyocBMC+FOBkPSEBtEfKO+N0Pkp3vU3KV1L1UA7yOvI/VG7Qhq6aC+8
         /nQA==
X-Gm-Message-State: AOAM532zYy4GyjbSG71R+aLdsVQ3s84ouKxjdo5z14JpjUhGEQwiWmds
        hJPvXcbQUvvEjNZPl7Ir+xFbdw==
X-Received: by 2002:a17:90a:670a:: with SMTP id n10mr5536990pjj.176.1618931765726;
        Tue, 20 Apr 2021 08:16:05 -0700 (PDT)
Received: from localhost ([116.206.101.232])
        by smtp.gmail.com with ESMTPSA id a129sm2913849pfa.36.2021.04.20.08.16.04
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 20 Apr 2021 08:16:04 -0700 (PDT)
From:   Leo Yan <leo.yan@linaro.org>
To:     Arnaldo Carvalho de Melo <acme@kernel.org>,
        Adrian Hunter <adrian.hunter@intel.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Ingo Molnar <mingo@redhat.com>,
        Mark Rutland <mark.rutland@arm.com>,
        Alexander Shishkin <alexander.shishkin@linux.intel.com>,
        Jiri Olsa <jolsa@redhat.com>,
        Namhyung Kim <namhyung@kernel.org>,
        Andi Kleen <ak@linux.intel.com>,
        Tiezhu Yang <yangtiezhu@loongson.cn>,
        linux-kernel@vger.kernel.org
Cc:     Leo Yan <leo.yan@linaro.org>
Subject: [PATCH] perf auxtrace: Fix potential null pointer dereference
Date:   Tue, 20 Apr 2021 23:15:53 +0800
Message-Id: <20210420151554.2031768-1-leo.yan@linaro.org>
X-Mailer: git-send-email 2.25.1
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

In the function auxtrace_parse_snapshot_options(), the callback pointer
"itr->parse_snapshot_options" can be NULL if it has not been set during
the AUX record initialization.  This can cause tool crashing if the
callback pointer "itr->parse_snapshot_options" is dereferenced without
performing NULL check.

Add a NULL check for the pointer "itr->parse_snapshot_options" before
invoke the callback.

Fixes: d20031bb63dd ("perf tools: Add AUX area tracing Snapshot Mode")
Signed-off-by: Leo Yan <leo.yan@linaro.org>
---
 tools/perf/util/auxtrace.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tools/perf/util/auxtrace.c b/tools/perf/util/auxtrace.c
index 953f4afacd3b..320b47f133d3 100644
--- a/tools/perf/util/auxtrace.c
+++ b/tools/perf/util/auxtrace.c
@@ -638,7 +638,7 @@ int auxtrace_parse_snapshot_options(struct auxtrace_record *itr,
 		break;
 	}
 
-	if (itr)
+	if (itr && itr->parse_snapshot_options)
 		return itr->parse_snapshot_options(itr, opts, str);
 
 	pr_err("No AUX area tracing to snapshot\n");
-- 
2.25.1