On Tue, Jan 15, 2019 at 12:47:34PM -0800, Kees Cook wrote:
> On Sat, Jan 12, 2019 at 7:28 AM Willy Tarreau wrote:
> >
> > From: Silvio Cesare
> >
> > Change snprintf to scnprintf. There are generally two cases where using
> > snprintf causes problems.
> >
> > 1) Uses of size += snprintf(buf, SIZE
On Sat, Jan 12, 2019 at 7:28 AM Willy Tarreau wrote:
>
> From: Silvio Cesare
>
> Change snprintf to scnprintf. There are generally two cases where using
> snprintf causes problems.
>
> 1) Uses of size += snprintf(buf, SIZE - size, fmt, ...)
> In this case, if snprintf would have written more char
Hi Kees,
On Mon, Jan 14, 2019 at 05:02:51PM -0800, Kees Cook wrote:
> On Sat, Jan 12, 2019 at 7:28 AM Willy Tarreau wrote:
> >
> > From: Silvio Cesare
> >
> > Change snprintf to scnprintf. There are generally two cases where using
> > snprintf causes problems.
>
> (I didn't find a 0/8 cover let
On Mon, Jan 14, 2019 at 5:02 PM Kees Cook wrote:
> On Sat, Jan 12, 2019 at 7:28 AM Willy Tarreau wrote:
> > From: Silvio Cesare
> > Change snprintf to scnprintf. There are generally two cases where using
> > snprintf causes problems.
>
> (I didn't find a 0/8 cover letter, so I'm replying here...
On Sat, Jan 12, 2019 at 7:28 AM Willy Tarreau wrote:
>
> From: Silvio Cesare
>
> Change snprintf to scnprintf. There are generally two cases where using
> snprintf causes problems.
(I didn't find a 0/8 cover letter, so I'm replying here...)
Many of these fixes are just robustness updates (e.g.
From: Silvio Cesare
Change snprintf to scnprintf. There are generally two cases where using
snprintf causes problems.
1) Uses of size += snprintf(buf, SIZE - size, fmt, ...)
In this case, if snprintf would have written more characters than what the
buffer size (SIZE) is, then size will end up la
6 matches
Mail list logo
