From owner-freebsd-bugs@FreeBSD.ORG  Sun Mar  6 23:25:49 2011
Return-Path: <owner-freebsd-bugs@FreeBSD.ORG>
Delivered-To: freebsd-bugs@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 7ED47106564A;
	Sun,  6 Mar 2011 23:25:49 +0000 (UTC)
	(envelope-from oliver.pntr@gmail.com)
Received: from mail-ww0-f50.google.com (mail-ww0-f50.google.com [74.125.82.50])
	by mx1.freebsd.org (Postfix) with ESMTP id DDC248FC08;
	Sun,  6 Mar 2011 23:25:48 +0000 (UTC)
Received: by wwb31 with SMTP id 31so4800233wwb.31
	for <multiple recipients>; Sun, 06 Mar 2011 15:25:47 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:mime-version:in-reply-to:references:date
	:message-id:subject:from:to:cc:content-type;
	bh=a+UgRXhyjhUFoP0cRXYwbLxJJs2rM2jHeuuxGa6VvzQ=;
	b=iSvrhLRal5jOcRrxHWdtN4pfJ+J5Y8LrYZvlfS3yE04Uxitd1KyzAd0h5ozQXPQHb2
	WRBAPkWNHjaExpM4ZHnX1Eapa8XKtN/AvfFBpuNMPjdaIAZfQ6uB+dXqGfitblydJKWN
	pt7E/InroKD2Ix77nsmHBLloyZSiVJF82l5CQ=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type;
	b=l75f0RwY/Xnk73+Im6LblBNlLRhvI6GTsF596IuroM0tnWtXR34vfhFxXxghebEJgE
	t/Ydmj+pbXpG9x0RQQjoOrQJXpoXH11ebhAbm9T0+h/m6S/5j3sq7TmhA95UHe5ZAw/5
	mcG+NhEDYPcs7b+gKyOGsc26XJ7fE4FVQfq6k=
MIME-Version: 1.0
Received: by 10.227.179.140 with SMTP id bq12mr2946068wbb.152.1299452091882;
	Sun, 06 Mar 2011 14:54:51 -0800 (PST)
Received: by 10.227.142.213 with HTTP; Sun, 6 Mar 2011 14:54:51 -0800 (PST)
In-Reply-To: <AANLkTinQqtBD1ANhjs6P3gb5EJL4MhPUcLiPfo+mpNEX@mail.gmail.com>
References: <201103061956.p26JutYe064887@red.freebsd.org>
	<201103062000.p26K0InG097407@freefall.freebsd.org>
	<AANLkTinQqtBD1ANhjs6P3gb5EJL4MhPUcLiPfo+mpNEX@mail.gmail.com>
Date: Sun, 6 Mar 2011 23:54:51 +0100
Message-ID: <AANLkTi=dUkneFhOMh_R6d7jS1og32xrBGo=+_LjedgHL@mail.gmail.com>
From: Oliver Pinter <oliver.pntr@gmail.com>
To: "Devon H. O'Dell" <devon.odell@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
Cc: freebsd-bugs@freebsd.org, FreeBSD-gnats-submit@freebsd.org
Subject: Re: kern/155321: imgact_shell integer underflow when argv[0] is
 longer than interp + path
X-BeenThere: freebsd-bugs@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Bug reports <freebsd-bugs.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-bugs>
List-Post: <mailto:freebsd-bugs@freebsd.org>
List-Help: <mailto:freebsd-bugs-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-bugs>,
	<mailto:freebsd-bugs-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 06 Mar 2011 23:25:49 -0000

under 7.4 exist too this problem

XXX@XXX test> gcc execve.c
XXX@XXX test> cp /bin/ls .
XXX@XXX test> ./a.out ls /tmp/test/ls
a.out           execve.c        ls              shellscript
XXX@XXX test> ./a.out shellscript asdf
shellscript
XXX@XXX test> ./a.out shellscript /tmp/test/
a.out*       execve.c     ls*          shellscript*
XXX@XXX test> ./a.out shellscript /tmp/test/ls
shellscript
XXX@XXX test> ./a.out shellscript /tmp/test/shellscript
shellscript
XXX@XXX test> ./a.out shellscript /bin/echo-shellscript
shellscript
XXX@XXX test> ./a.out shellscript /bin/echo-shellscript1
execve: Argument list too long
XXX@XXX test> uname -a
FreeBSD XXX 7.4-STABLE FreeBSD 7.4-STABLE #71 r219301+472ccf9: Sun Mar
 6 19:16:46 CET 2011     XXX@XXX:/usr/obj/usr/src/sys/stable  amd64


On 3/6/11, Devon H. O'Dell <devon.odell@gmail.com> wrote:
> Actually, kib@ points out that this isn't quite correct; the correct
> fix should indeed be a 1-liner, attached.
>
> --dho
>