[Openvpn-devel] buffer: use memcpy in buf_catrunc

Message ID	20230922160441.167168-1-frank@lichtenheld.com
State	Accepted
Headers	show Return-Path: <openvpn-devel-bounces@lists.sourceforge.net> Received-SPF: pass (google.com: domain of openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as permitted sender) client-ip=216.105.38.7; From: Frank Lichtenheld <frank@lichtenheld.com> To: openvpn-devel@lists.sourceforge.net Date: Fri, 22 Sep 2023 18:04:41 +0200 Message-Id: <20230922160441.167168-1-frank@lichtenheld.com> In-Reply-To: <gerrit.1689947729000.If4a67adac4d2e870fd719b58075d39efcd67c671@gerrit.openvpn.net> References: <gerrit.1689947729000.If4a67adac4d2e870fd719b58075d39efcd67c671@gerrit.openvpn.net> MIME-Version: 1.0 preview: Since we use strlen() to determine the length and then check it ourselves, there is really no point in using strncpy. But the compiler might complain that we use the output of strlen() for the length of strncpy which is usually a sign for bugs: Content analysis details: (-0.9 points, 6.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -0.7 RCVD_IN_DNSWL_LOW RBL: Sender listed at https://www.dnswl.org/, low trust [80.241.56.171 listed in list.dnswl.org] -0.0 SPF_PASS SPF: sender matches SPF record 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature Subject: [Openvpn-devel] [PATCH] buffer: use memcpy in buf_catrunc Precedence: list Cc: Heiko Hund <heiko@openvpn.net>, Antonio Quartulli <a@unstable.cc>, Gert Doering <gert@greenie.muc.de> Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: openvpn-devel-bounces@lists.sourceforge.net X-getmail-retrieved-from-mailbox: Inbox
Series	[Openvpn-devel] buffer: use memcpy in buf_catrunc \| expand [Openvpn-devel] buffer: use memcpy in buf_catrunc

Message ID

20230922160441.167168-1-frank@lichtenheld.com

State

Accepted

Headers

Received-SPF: pass (google.com: domain of
 openvpn-devel-bounces@lists.sourceforge.net designates 216.105.38.7 as
 permitted sender) client-ip=216.105.38.7;
From: Frank Lichtenheld <frank@lichtenheld.com>
To: openvpn-devel@lists.sourceforge.net
Date: Fri, 22 Sep 2023 18:04:41 +0200
Message-Id: <20230922160441.167168-1-frank@lichtenheld.com>
In-Reply-To: 
 <gerrit.1689947729000.If4a67adac4d2e870fd719b58075d39efcd67c671@gerrit.openvpn.net>
References: 
 <gerrit.1689947729000.If4a67adac4d2e870fd719b58075d39efcd67c671@gerrit.openvpn.net>
MIME-Version: 1.0
Subject: [Openvpn-devel] [PATCH] buffer: use memcpy in buf_catrunc
Precedence: list
Cc: Heiko Hund <heiko@openvpn.net>, Antonio Quartulli <a@unstable.cc>,
 Gert Doering <gert@greenie.muc.de>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: openvpn-devel-bounces@lists.sourceforge.net

Series

[Openvpn-devel] buffer: use memcpy in buf_catrunc | expand

Commit Message

Frank Lichtenheld Sept. 22, 2023, 4:04 p.m. UTC

Since we use strlen() to determine the length
and then check it ourselves, there is really
no point in using strncpy.

But the compiler might complain that we use
the output of strlen() for the length of
strncpy which is usually a sign for bugs:

error: ‘strncpy’ specified bound depends
 on the length of the source argument
 [-Werror=stringop-overflow=]

Warning was at least triggered for
mingw-gcc version 10-win32 20220113.

Also change the type of len to size_t
which avoids potential problems with
signed overflow.

v2:
 - make len size_t and change code to avoid any theoretical overflows
 - remove useless casts
v3:
 - fix off-by-one introduced by v2 %)
v4:
 - ignore unsigned overflow to simplify code

Change-Id: If4a67adac4d2e870fd719b58075d39efcd67c671
Signed-off-by: Frank Lichtenheld <frank@lichtenheld.com>
Acked-by: Antonio Quartulli <a@unstable.cc>
Acked-by: Heiko Hund <heiko@openvpn.net>
Acked-by: Gert Doering <gert@greenie.muc.de>
(cherry picked from commit c89a97e449baaf60924a362555d35184f188a646)
---

This change was reviewed on Gerrit and approved by at least one
developer. I request to merge it to release/2.6.

Gerrit URL: https://gerrit.openvpn.net/c/openvpn/+/314
This mail reflects revision 1 of this Change.
Acked-by according to Gerrit (reflected above):
Antonio Quartulli <a@unstable.cc>
Heiko Hund <heiko@openvpn.net>

Comments

Gert Doering Sept. 23, 2023, 9:56 a.m. UTC | #1

Straightforward cherrypick, smoke tested on linux.

Your patch has been applied to the release/2.6 branch.

commit 946219115d00c6ae658afcf538249e721e6bd600 (release/2.6)
Author: Frank Lichtenheld
Date:   Fri Sep 22 18:04:41 2023 +0200

     buffer: use memcpy in buf_catrunc

     Signed-off-by: Frank Lichtenheld <frank@lichtenheld.com>
     Acked-by: Antonio Quartulli <a@unstable.cc>
     Acked-by: Heiko Hund <heiko@openvpn.net>
     Acked-by: Gert Doering <gert@greenie.muc.de>
     Message-Id: <20230922160441.167168-1-frank@lichtenheld.com>
     URL: https://www.mail-archive.com/openvpn-devel@lists.sourceforge.net/msg27085.html
     Signed-off-by: Gert Doering <gert@greenie.muc.de>


--
kind regards,

Gert Doering

diff --git a/src/openvpn/buffer.c b/src/openvpn/buffer.c
index d099795..7725438 100644
--- a/src/openvpn/buffer.c
+++ b/src/openvpn/buffer.c
@@ -316,10 +316,10 @@ 
 {
     if (buf_forward_capacity(buf) <= 1)
     {
-        int len = (int) strlen(str) + 1;
+        size_t len = strlen(str) + 1;
         if (len < buf_forward_capacity_total(buf))
         {
-            strncpynt((char *)(buf->data + buf->capacity - len), str, len);
+            memcpy(buf->data + buf->capacity - len, str, len);
         }
     }
 }

[Openvpn-devel] buffer: use memcpy in buf_catrunc

Commit Message

Comments

Patch