DISPATCH-1262: fix GCC 8.2 format-truncation error in router/src/main.c #448

jirkadanek · 2019-02-04T11:41:28Z

Gcc warns because getcwd on Linux may allocate and return new buffer,
so don't ignore the returned value. And cur_path may in theory be null
going in if previous calloc failed.

It is unlikely we would end up with cur_path = NULL as parameter to %s
in a formatting string later below, but it is possible, given very
careful timing and sufficiently malicious user, I think.

Change is made to silence GCC warning, so that ``-fsanitize=undefined` compiles.

Gcc warns because `getcwd` on Linux may allocate and return new buffer, so don't ignore the returned value. And cur_path may in theory be null going in if previous `calloc` failed. It is unlikely we would end up with cur_path = NULL as parameter to `%s` in a formatting string later below, but it is possible, given very careful timing and sufficiently malicious user, I think. Change is made to silence GCC warning, so that ``-fsanitize=undefined` compiles.

jirkadanek · 2019-02-04T14:44:57Z

@ganeshmurthy thanks for looking into this

…che#448)

asfgit closed this in ca7d346 Feb 4, 2019

jirkadanek deleted the jd_format_truncation branch February 4, 2019 14:45

ChugR pushed a commit to ChugR/qpid-dispatch that referenced this pull request Oct 13, 2022

Fixes apache#412, DISPATCH-1962 - Python IoAdaptor shutdown leak (apa…

9145be6

…che#448)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

DISPATCH-1262: fix GCC 8.2 format-truncation error in router/src/main.c #448

DISPATCH-1262: fix GCC 8.2 format-truncation error in router/src/main.c #448

jirkadanek commented Feb 4, 2019

jirkadanek commented Feb 4, 2019

DISPATCH-1262: fix GCC 8.2 format-truncation error in router/src/main.c #448

DISPATCH-1262: fix GCC 8.2 format-truncation error in router/src/main.c #448

Conversation

jirkadanek commented Feb 4, 2019

jirkadanek commented Feb 4, 2019