[libnftnl PATCH v2] internal: fix SNPRINTF_BUFFER

netfilter-devel.vger.kernel.org archive mirror
 help / color / mirror / Atom feed

* [libnftnl PATCH v2] internal: fix SNPRINTF_BUFFER_SIZE macro
@ 2014-05-13  7:08 Arturo Borrero Gonzalez
  2014-05-13 15:24 ` Pablo Neira Ayuso
  0 siblings, 1 reply; 2+ messages in thread
From: Arturo Borrero Gonzalez @ 2014-05-13  7:08 UTC (permalink / raw)
  To: netfilter-devel; +Cc: pablo

We need to store in 'offset' the complete amount of characters as returned
from _snprintf. The value means how many characters long needs the buffer to be
in order to store the corresponding string expansion.

Before this patch, in cases where the buffer is smaller than the
expansion, then ret > len, and therefore ret = len.
So when incrementing offset, we do it with a wrong value.

All previous versions of libnftnl are unable to handle this situations: small
buffers (or long string expansion).

BTW, if a caller must reallocate a buffer to the returned value of snprintf, it
should be ret + 1.

While at it, let's add a check to know if the last snprintf call failed.

Signed-off-by: Arturo Borrero Gonzalez <arturo.borrero.glez@gmail.com>
---
v2: return if ret < 0. Increment size later.

 src/internal.h |    6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/src/internal.h b/src/internal.h
index 6595e70..b06f166 100644
--- a/src/internal.h
+++ b/src/internal.h
@@ -183,10 +183,12 @@ struct nft_set_elem {
 };

 #define SNPRINTF_BUFFER_SIZE(ret, size, len, offset)	\
-	size += ret;					\
+	if (ret < 0)					\
+		return ret;				\
+	offset += ret;					\
 	if (ret > len)					\
 		ret = len;				\
-	offset += ret;					\
+	size += ret;					\
 	len -= ret;

 #define div_round_up(n, d)	(((n) + (d) - 1) / (d))

^ permalink raw reply related	[flat|nested] 2+ messages in thread

* Re: [libnftnl PATCH v2] internal: fix SNPRINTF_BUFFER_SIZE macro
  2014-05-13  7:08 [libnftnl PATCH v2] internal: fix SNPRINTF_BUFFER_SIZE macro Arturo Borrero Gonzalez
@ 2014-05-13 15:24 ` Pablo Neira Ayuso
  0 siblings, 0 replies; 2+ messages in thread
From: Pablo Neira Ayuso @ 2014-05-13 15:24 UTC (permalink / raw)
  To: Arturo Borrero Gonzalez; +Cc: netfilter-devel

On Tue, May 13, 2014 at 09:08:15AM +0200, Arturo Borrero Gonzalez wrote:
> We need to store in 'offset' the complete amount of characters as returned
> from _snprintf. The value means how many characters long needs the buffer to be
> in order to store the corresponding string expansion.
> 
> Before this patch, in cases where the buffer is smaller than the
> expansion, then ret > len, and therefore ret = len.
> So when incrementing offset, we do it with a wrong value.
> 
> All previous versions of libnftnl are unable to handle this situations: small
> buffers (or long string expansion).
> 
> BTW, if a caller must reallocate a buffer to the returned value of snprintf, it
> should be ret + 1.
> 
> While at it, let's add a check to know if the last snprintf call failed.

Also applied, thanks.

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2014-05-13 15:24 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2014-05-13  7:08 [libnftnl PATCH v2] internal: fix SNPRINTF_BUFFER_SIZE macro Arturo Borrero Gonzalez
2014-05-13 15:24 ` Pablo Neira Ayuso

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).