Date: Mon, 29 Feb 2016 00:24:44 +0100 From: Dimitry Andric <dim@FreeBSD.org> To: Jilles Tjoelker <jilles@stack.nl> Cc: Howard Su <howard0su@gmail.com>, current@freebsd.org Subject: Re: buffer overflow warning in /bin/sh Message-ID: <6FC0C3D8-EF6E-4648-903A-92CB1B49DB1F@FreeBSD.org> In-Reply-To: <20160228221659.GA30583@stack.nl> References: <CAAvnz_owSKcJ71LJa2F4MnnWKjV251CH-mBsVMFcS=riN=bK_Q@mail.gmail.com> <0353BD46-1397-4DAC-9115-6D2355E7F42D@FreeBSD.org> <20160228221659.GA30583@stack.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
--Apple-Mail=_ED6EEB56-3E4C-400D-B1B9-28AAA243F883 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii On 28 Feb 2016, at 23:16, Jilles Tjoelker <jilles@stack.nl> wrote: >=20 > On Fri, Feb 26, 2016 at 06:21:20PM +0100, Dimitry Andric wrote: ... >> This frame has 3 object(s): >> [16, 20) 'bqlist' >> [32, 128) 'state_static' <=3D=3D Memory access at offset 32 is = inside this variable >> [160, 170) 'buf' ... >> This may be a false positive though. >=20 > The reported store, which is near the top of the function, is clearly > within bounds. Yes, it's definitely a false positive. I'm still attempting to find out where this goes awry, but it isn't in sh, at least. (After some help from Bryan Drewery I managed to run it through valgrind-devel, and that does not complain about anything...) -Dimitry --Apple-Mail=_ED6EEB56-3E4C-400D-B1B9-28AAA243F883 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP using GPGMail -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.29 iEUEARECAAYFAlbTgdIACgkQsF6jCi4glqPSIwCXTELmES3jxOJ9FQ91HY9JI88q 1wCg3fYygZAH7AKFd4E5KG7QgrqQJLU= =CHmz -----END PGP SIGNATURE----- --Apple-Mail=_ED6EEB56-3E4C-400D-B1B9-28AAA243F883--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6FC0C3D8-EF6E-4648-903A-92CB1B49DB1F>