From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Wiles, Keith" <keith.wiles@intel.com>
Subject: Re: [PATCH 5/5] cfgfile: increase local buffer size for
 max	name and value
Date: Thu, 9 Mar 2017 15:23:16 +0000
Message-ID: <AE4F0E6C-41C6-45C7-8AF7-4807249BF5A6@intel.com>
References: <1488482971-170522-1-git-send-email-allain.legacy@windriver.com>
 <1488482971-170522-6-git-send-email-allain.legacy@windriver.com>
 <8258C19A-889A-475B-9F29-33949ABCF8EE@intel.com>
 <70A7408C6E1BFB41B192A929744D8523968E9F02@ALA-MBC.corp.ad.wrs.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Cc: "Wiles, Keith" <keith.wiles@intel.com>, "Richardson, Bruce"
 <bruce.richardson@intel.com>, "Dumitrescu, Cristian"
 <cristian.dumitrescu@intel.com>, "dev@dpdk.org" <dev@dpdk.org>, "Jolliffe,
 Ian (Wind River)" <ian.jolliffe@windriver.com>
To: "Legacy, Allain (Wind River)" <allain.legacy@windriver.com>
Return-path: <dev-bounces@dpdk.org>
Received: from mga06.intel.com (mga06.intel.com [134.134.136.31])
 by dpdk.org (Postfix) with ESMTP id E15832B8C
 for <dev@dpdk.org>; Thu,  9 Mar 2017 16:23:18 +0100 (CET)
In-Reply-To: <70A7408C6E1BFB41B192A929744D8523968E9F02@ALA-MBC.corp.ad.wrs.com>
Content-Language: en-US
Content-ID: <5975FDD2D46AF843BC2CFCD214339F4D@intel.com>
List-Id: DPDK patches and discussions <dev.dpdk.org>
List-Unsubscribe: <http://dpdk.org/ml/options/dev>,
 <mailto:dev-request@dpdk.org?subject=unsubscribe>
List-Archive: <http://dpdk.org/ml/archives/dev/>
List-Post: <mailto:dev@dpdk.org>
List-Help: <mailto:dev-request@dpdk.org?subject=help>
List-Subscribe: <http://dpdk.org/ml/listinfo/dev>,
 <mailto:dev-request@dpdk.org?subject=subscribe>
Errors-To: dev-bounces@dpdk.org
Sender: "dev" <dev-bounces@dpdk.org>


> On Mar 9, 2017, at 9:16 AM, Legacy, Allain <Allain.Legacy@windriver.com> =
wrote:
>=20
>> -----Original Message-----
>> From: Wiles, Keith [mailto:keith.wiles@intel.com]
>> Sent: Thursday, March 09, 2017 8:46 AM
>> Would this change still cause a failure and memory over write if the use=
r
>> decides to have very large string. Does the code check the lengths to ma=
ke
>> sure they are valid and return error?
>>=20
>=20
> The fgets() is bounded by the size of the buffer and the subsequent valid=
ation will raise an error if no newline was detected within the buffer ther=
efore an overly long line will result in a failure.  I have added a test ca=
se in the v2 patchset in which I have added a unit test framework for this =
library.
>=20
> 	while (fgets(buffer, sizeof(buffer), f) !=3D NULL) {
> 		char *pos =3D NULL;
> 		size_t len =3D strnlen(buffer, sizeof(buffer));
> 		lineno++;
> 		if ((len >=3D sizeof(buffer) - 1) && (buffer[len-1] !=3D '\n')) {
> 			printf("Error line %d - no \\n found on string. "
> 					"Check if line too long\n", lineno);
> 			goto error1;
> 		}
>=20
> Does that satisfy your concern and qualify for you Ack?

Acked-by: Keith Wiles <keith.wiles@intel.com>

Regards,
Keith