vxworks OS_SymTableIterator() name arg too long #100

skliper · 2019-09-30T14:23:53Z

The OS_SymTableIterator() name arg could be too long and could be strncpy/copied without a terminating null into SymbolRecord_t's char SymbolName[OS_MAX_SYM_LEN];. This unterminated null would then be written into the OS_sym_table_file_fd.

See osloader.c, ln 189.

Recommend: an explicit name length check:
{{{
if (strlen >= OS_MAX_SYM_LEN) {
return(FALSE);
}
}}}
before strncpy.

(Discovered as part of #45 coverage testing.)

skliper · 2019-09-30T14:23:54Z

Imported from trac issue 77. Created by abrown4 on 2015-07-15T11:52:38, last modified: 2015-12-01T14:31:57

skliper · 2019-09-30T14:23:54Z

Trac comment by abrown4 on 2015-07-20 16:47:18:

commit: [changeset:17a4c30] Trac #100, Fixed vxworks OS_SymTableIterator() name arg too long.

Also supplied unit test to illustrate the problem and check fix.

skliper · 2019-09-30T14:23:55Z

Trac comment by abrown4 on 2015-11-25 13:01:49:

Traceability: This change is reflected in #135 [changeset:093359f]. Recommend closing #100.

skliper self-assigned this Sep 30, 2019

skliper added the bug label Sep 30, 2019

skliper closed this as completed Sep 30, 2019

skliper mentioned this issue Sep 30, 2019

Integrate JSC audit of parameter and return code checking #135

Closed

skliper removed their assignment Sep 30, 2019

skliper added the duplicate label Sep 30, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

vxworks OS_SymTableIterator() name arg too long #100

vxworks OS_SymTableIterator() name arg too long #100

skliper commented Sep 30, 2019

skliper commented Sep 30, 2019

skliper commented Sep 30, 2019

skliper commented Sep 30, 2019

vxworks OS_SymTableIterator() name arg too long #100

vxworks OS_SymTableIterator() name arg too long #100

Comments

skliper commented Sep 30, 2019

skliper commented Sep 30, 2019

skliper commented Sep 30, 2019

skliper commented Sep 30, 2019