From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1KtkRS-00082q-7s
	for qemu-devel@nongnu.org; Sat, 25 Oct 2008 10:48:38 -0400
Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1KtkRP-0007z7-Sj
	for qemu-devel@nongnu.org; Sat, 25 Oct 2008 10:48:37 -0400
Received: from [199.232.76.173] (port=35405 helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1KtkRP-0007ym-IU
	for qemu-devel@nongnu.org; Sat, 25 Oct 2008 10:48:35 -0400
Received: from rv-out-0708.google.com ([209.85.198.243]:57212)
	by monty-python.gnu.org with esmtp (Exim 4.60)
	(envelope-from <balrogg@gmail.com>) id 1KtkRP-0001rq-17
	for qemu-devel@nongnu.org; Sat, 25 Oct 2008 10:48:35 -0400
Received: by rv-out-0708.google.com with SMTP id f25so1213133rvb.22
	for <qemu-devel@nongnu.org>; Sat, 25 Oct 2008 07:48:34 -0700 (PDT)
Message-ID: <fb249edb0810250748q195ed02fl5a4e6929d05a1337@mail.gmail.com>
Date: Sat, 25 Oct 2008 16:48:34 +0200
From: "andrzej zaborowski" <balrogg@gmail.com>
Subject: Re: [Qemu-devel] [5532] Replace uses of strndup (a GNU extension)
	with Qemu pstrdup
In-Reply-To: <f43fc5580810250731r7f619619t75ae42605ed045b6@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
References: <E1KthEt-0006Tr-CT@cvs.savannah.gnu.org>
	<fb249edb0810250503n5742179aqfe1bab3928d1f4a5@mail.gmail.com>
	<f43fc5580810250518w7108201aocad17884c455837d@mail.gmail.com>
	<fb249edb0810250607q7a0ee641nc3e976c36cfa2dc0@mail.gmail.com>
	<f43fc5580810250649k6bb9c137w63169835c9b4c4bc@mail.gmail.com>
	<fb249edb0810250715t7005389fj43e3d39439afe9b5@mail.gmail.com>
	<f43fc5580810250731r7f619619t75ae42605ed045b6@mail.gmail.com>
Reply-To: qemu-devel@nongnu.org
List-Id: qemu-devel.nongnu.org
List-Unsubscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: qemu-devel@nongnu.org

2008/10/25 Blue Swirl <blauwirbel@gmail.com>:
> On 10/25/08, andrzej zaborowski <balrogg@gmail.com> wrote:
>> 2008/10/25 Blue Swirl <blauwirbel@gmail.com>:
>>  > On 10/25/08, andrzej zaborowski <balrogg@gmail.com> wrote:
>>  >> 2008/10/25 Blue Swirl <blauwirbel@gmail.com>:
>>  >>  > On 10/25/08, andrzej zaborowski <balrogg@gmail.com> wrote:
>>  >>  >> 2008/10/25 Blue Swirl <blauwirbel@gmail.com>:
>>  >>  >>
>>  >>  >> > Revision: 5532
>>  >>  >>  >          http://svn.sv.gnu.org/viewvc/?view=rev&root=qemu&revision=5532
>>  >>  >>  > Author:   blueswir1
>>  >>  >>  > Date:     2008-10-25 11:23:27 +0000 (Sat, 25 Oct 2008)
>>  >>  >>  >
>>  >>  >>  > Log Message:
>>  >>  >>  > -----------
>>  >>  >>  > Replace uses of strndup (a GNU extension) with Qemu pstrdup
>>  >>  >>  >
>>  >>  >>  > Modified Paths:
>>  >>  >>  > --------------
>>  >>  >>  >    trunk/cutils.c
>>  >>  >>  >    trunk/hw/bt-hci.c
>>  >>  >>  >    trunk/qemu-common.h
>>  >>  >>  >
>>  >>  >>  > Modified: trunk/cutils.c
>>  >>  >>  > ===================================================================
>>  >>  >>  > --- trunk/cutils.c      2008-10-25 11:21:28 UTC (rev 5531)
>>  >>  >>  > +++ trunk/cutils.c      2008-10-25 11:23:27 UTC (rev 5532)
>>  >>  >>  > @@ -50,6 +50,18 @@
>>  >>  >>  >     return buf;
>>  >>  >>  >  }
>>  >>  >>  >
>>  >>  >>  > +/* strdup with a limit */
>>  >>  >>  > +char *pstrdup(const char *str, size_t buf_size)
>>  >>  >>  > +{
>>  >>  >>  > +    size_t len;
>>  >>  >>  > +    char *buf;
>>  >>  >>  > +
>>  >>  >>  > +    len = MIN(buf_size, strlen(str));
>>  >>  >>  > +    buf = qemu_malloc(len);
>>  >>  >>  > +    pstrcpy(buf, len, str);
>>  >>  >>  > +    return buf;
>>  >>  >>  > +}
>>  >>  >>
>>  >>  >>
>>  >>  >> I think here also pstrcpy will only copy up to buf_size - 1 characters
>>  >>  >>  while strndup would copy buf_size chars.
>>  >>  >
>>  >>  > That is actually safer if we always want the strings to be NUL terminated.
>>  >>
>>  >>
>>  >> strndup also always NUL terminates the string so it's just as safe,
>>  >>  the length is just different.
>>  >>
>>  >>
>>  >>  >
>>  >>  > But the allocation length is wrong, it should be MIN(buf_size, strlen(str) + 1).
>>  >>
>>  >>
>>  >> By my reading of the manual, it should rather be MIN(buf_size, strlen(str)) + 1.
>>  >
>>  > But then the length could be incorrect: buf_size + 1.
>>
>>
>> That's what it should be in case lmp_name is 248 chars long.  I think
>>  the confusion is because you called the parameter buf_size while
>>  strndup calls it n (the number of characters.. not buffer size).
>
> If strlen(lmp_name) >= 248, only first 247 should be copied and the
> final character should be NUL, because sizeof(read_local_name_rp.name)
> == buf_size == 248.

Nope, actually now I notice that I assumed that strndup never executes
strlen() on the parameter... I think it's a sane assumption (?).

read_local_name_rp.name format is specified by the bluetooth "Volume 2
Core system package, part E - Host Controller Interface Functional
Specification" on pg. 394:

6.24 LOCAL NAME
<...>
If the name contained in the parameter is shorter than 248 octets, the
end of the name is indicated by a NULL octet (0x00), and the following
octets (to fill up 248 octets, which is the length of the parameter) do not
have valid values.