svn commit: r336031 - head/usr.bin/top

Sean Bruno sbruno at freebsd.org
Fri Jul 6 15:01:12 UTC 2018 


On 07/06/18 08:49, Ian Lepore wrote:
> On Fri, 2018-07-06 at 13:22 +0000, Sean Bruno wrote:
>> Author: sbruno
>> Date: Fri Jul  6 13:22:44 2018
>> New Revision: 336031
>> URL: https://svnweb.freebsd.org/changeset/base/336031
>>
>> Log:
>>   r336028 changed next_msg to a char * from char [] of fixed size.  Change
>>   2nd argument of vsnprintf() to get the strlen of next_msg so that the
>>   appropriate size is used.
>>   
>>   Found with gcc.
>>   
>>   /usr.bin/top/display.c: In function 'new_message':
>>   /usr.bin/top/display.c:963:31: error:
>>   argument to 'sizeof' in 'vsnprintf' call is the same expression as the
>>   destination; did you mean to provide an explicit length?
>>   [-Werror=sizeof-pointer-memaccess]
>>        vsnprintf(next_msg, sizeof(next_msg), msgfmt, args);
>>   
>>   Reviewed by:	daichi
>>
>> Modified:
>>   head/usr.bin/top/display.c
>>
>> Modified: head/usr.bin/top/display.c
>> ==============================================================================
>> --- head/usr.bin/top/display.c	Fri Jul  6 12:44:48 2018	(r336030)
>> +++ head/usr.bin/top/display.c	Fri Jul  6 13:22:44 2018	(r336031)
>> @@ -960,7 +960,7 @@ new_message(int type, const char *msgfmt, ...)
>>      va_start(args, msgfmt);
>>  
>>      /* first, format the message */
>> -    vsnprintf(next_msg, sizeof(next_msg), msgfmt, args);
>> +    vsnprintf(next_msg, strlen(next_msg), msgfmt, args);
>>  
>>      va_end(args);
>>  
>>
> 
> This fix is incorrect. The original commit that changed next_msg to a
> pointer is probably flawed enough to revert and redevelop rather than
> try a rolling set of bandaid fixes.
> 
> Whenever setup_buffer() creates a new buffer it will need to store the
> size it allocated for use in this vsnprintf() call (and maybe other
> places that write directly into next_msg without calling setup_buffer
> to reallocate it first, I didn't look). The setup_buffer_bufsiz
> variable isn't quite right as-is, because it doesn't include the
> 'addlen' value passed to setup_buffer().
> 
> -- Ian
> 
> 


Yeah, this isn't going well.  I've been poking around in it and I can't
see an quick way to do this correctly.

sean

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 618 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/svn-src-all/attachments/20180706/2a2f2710/attachment.sig>

More information about the svn-src-all mailing list