Skip to content

Fix NEGATIVE_CODE_ERROR in libev ev.c sigfdcb#514

Open
mikhailnov wants to merge 1 commit intolinux-audit:masterfrom
mikhailnov:svace9
Open

Fix NEGATIVE_CODE_ERROR in libev ev.c sigfdcb#514
mikhailnov wants to merge 1 commit intolinux-audit:masterfrom
mikhailnov:svace9

Conversation

@mikhailnov
Copy link
Contributor

@mikhailnov mikhailnov commented Feb 28, 2026

Add check for negative return value from read() before using it in pointer arithmetic. This prevents undefined behavior when read() returns -1 on error.

Similar fix was applied to infy_cb in commit 87296f7 ("Fix a libev static analysis warning").

Svace report (for audit-userspace v3.0.8):
Variable 'res', which might receive a negative value at ev.c:2966
by calling function 'read', is used without checking at ev.c:2969.
(CWE129, CWE394, CWE606)

@mikhailnov
Fix NEGATIVE_CODE_ERROR in libev ev.c sigfdcb
cb1ae9c 
Add check for negative return value from read() before using it in
pointer arithmetic. This prevents undefined behavior when read()
returns -1 on error.

Similar fix was applied to infy_cb in commit 87296f7 ("Fix a libev static analysis warning").

Svace report (for audit-userspace v3.0.8):
  Variable 'res', which might receive a negative value at ev.c:2966
  by calling function 'read', is used without checking at ev.c:2969.
  (CWE129, CWE394, CWE606)

Co-authored-by: Z.AI GLM-5
@stevegrubb
Copy link
Contributor

stevegrubb commented Feb 28, 2026

As mentioned in the other issue, I don't like changes to libev. However, in this case it is in the signalfd code which we don't use. Since we don't use signalfds, it doesn't affect audit.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mikhailnov @stevegrubb