[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated

To: Tim Deegan <tim@xxxxxxx>
From: George Dunlap <george.dunlap@xxxxxxxxxxxxx>
Date: Thu, 10 May 2012 12:47:24 +0100
Cc: "xen-devel@xxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxx>, Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>, Ian Campbell <Ian.Campbell@xxxxxxxxxx>
Delivery-date: Thu, 10 May 2012 11:48:59 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

On 10/05/12 12:44, Tim Deegan wrote:

At 12:36 +0100 on 10 May (1336653395), Ian Jackson wrote:

George Dunlap writes ("Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that 
/usr/bin/pygrub is deprecated"):

On 09/05/12 14:43, Ian Campbell wrote:

On Wed, 2012-05-09 at 11:51 +0100, George Dunlap wrote:

+    if ( !strncmp(info->u.pv.bootloader, "/usr/bin/pygrub", 20) )

Why strncmp and not just strcmp? And why 20? AFAIK
strlen("/usr/bin/pygrub") == 15 or 16 or so...

ISTR in the past build processes throwing warnings that strcmp() is
unsafe, and since warnings turn to errors, pre-emptively used the "safe"
version instead.

Boggle.  Any such build processes need to be taken out and shot.
There is nothing wrong with strcmp.  Are you sure you're not thinking
of strcat or sprintf ?

If the user controlled both the length and contents of
info->u.pv.bootloader, it could cause this to overrun that buffer and
cause a SEGV.  So, sadly, strcmp goes on the 'just never use it' list
for many people.

Hmm, yes, I suppose it's *technically* possible that even when comparingto a static string, if info->u.pv.bootloader contains a short,non-null-terminated string, and were close to the edge of a page, itcould cause a SEGV. But using strncmp wouldn't solve that, would it?


 -George

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated
  - From: Tim Deegan

References:
- [Xen-devel] [PATCH 0 of 3 RESEND] tools: Move bootloaders to libexec directory
  - From: George Dunlap
- [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated
  - From: George Dunlap
- Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated
  - From: Ian Campbell
- Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated
  - From: George Dunlap
- Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated
  - From: Ian Jackson
- Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated
  - From: Tim Deegan

Prev by Date: Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated
Next by Date: [Xen-devel] [xen-unstable test] 12828: regressions - FAIL
Previous by thread: Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated
Next by thread: Re: [Xen-devel] [PATCH 3 of 3 RESEND] libxl: Warn that /usr/bin/pygrub is deprecated
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.