* [U-Boot] [RFC/PATCH] common/command.c: Guard strchr/strlen from NULL pointer
@ 2010-11-24 10:15 Thomas Weber
2010-11-24 11:07 ` Wolfgang Denk
2010-11-24 12:44 ` [U-Boot] [RFC/PATCH] common/command.c: Guard strchr/strlen from NULL pointer Sergei Shtylyov
0 siblings, 2 replies; 7+ messages in thread
From: Thomas Weber @ 2010-11-24 10:15 UTC (permalink / raw)
To: u-boot
Guard strchr/strlen from being called with NULL pointer.
This line is crashing on OMAP3/Devkit8000 when command "env" is called without subcommand.
Toolchain is Codesourcery 2010q1.
The cmd is NULL in this case because the calling function "do_env" decremented the argc
without checking if there are still arguments available.
caller:
static int do_env (cmd_tbl_t *cmdtp, int flag, int argc, char * const argv[])
...
/* drop initial "env" arg */
argc--;
argv++;
cp = find_cmd_tbl(argv[0], cmd_env_sub, ARRAY_SIZE(cmd_env_sub));
Signed-off-by: Thomas Weber <weber@corscience.de>
---
common/command.c | 5 +++--
1 files changed, 3 insertions(+), 2 deletions(-)
diff --git a/common/command.c b/common/command.c
index 0020eac..03a713a 100644
--- a/common/command.c
+++ b/common/command.c
@@ -105,14 +105,15 @@ cmd_tbl_t *find_cmd_tbl (const char *cmd, cmd_tbl_t *table, int table_len)
cmd_tbl_t *cmdtp;
cmd_tbl_t *cmdtp_temp = table; /*Init value */
const char *p;
- int len;
+ int len = 0;
int n_found = 0;
/*
* Some commands allow length modifiers (like "cp.b");
* compare command name only until first dot.
*/
- len = ((p = strchr(cmd, '.')) == NULL) ? strlen (cmd) : (p - cmd);
+ if (cmd != NULL)
+ len = ((p = strchr(cmd, '.')) == NULL) ? strlen (cmd) : (p - cmd);
for (cmdtp = table;
cmdtp != table + table_len;
--
1.7.3.2
^ permalink raw reply related [flat|nested] 7+ messages in thread* [U-Boot] [RFC/PATCH] common/command.c: Guard strchr/strlen from NULL pointer
2010-11-24 10:15 [U-Boot] [RFC/PATCH] common/command.c: Guard strchr/strlen from NULL pointer Thomas Weber
@ 2010-11-24 11:07 ` Wolfgang Denk
2010-11-24 12:07 ` [U-Boot] [RFC/PATCHv2 1/2] Common/command: " Thomas Weber
2010-11-24 12:07 ` [U-Boot] [RFC/PATCHv2 2/2] Common/cmd_nvedit: Check for env subcommand Thomas Weber
2010-11-24 12:44 ` [U-Boot] [RFC/PATCH] common/command.c: Guard strchr/strlen from NULL pointer Sergei Shtylyov
1 sibling, 2 replies; 7+ messages in thread
From: Wolfgang Denk @ 2010-11-24 11:07 UTC (permalink / raw)
To: u-boot
Dear Thomas Weber,
In message <1290593751-540-1-git-send-email-weber@corscience.de> you wrote:
> Guard strchr/strlen from being called with NULL pointer.
> This line is crashing on OMAP3/Devkit8000 when command "env" is called without subcommand.
>
> Toolchain is Codesourcery 2010q1.
>
> The cmd is NULL in this case because the calling function "do_env" decremented the argc
> without checking if there are still arguments available.
One could argue if "env" should be fixed, then.
> cmd_tbl_t *cmdtp;
> cmd_tbl_t *cmdtp_temp = table; /*Init value */
> const char *p;
> - int len;
> + int len = 0;
> int n_found = 0;
>
> /*
> * Some commands allow length modifiers (like "cp.b");
> * compare command name only until first dot.
> */
> - len = ((p = strchr(cmd, '.')) == NULL) ? strlen (cmd) : (p - cmd);
> + if (cmd != NULL)
> + len = ((p = strchr(cmd, '.')) == NULL) ? strlen (cmd) : (p - cmd);
This is a pretty logish way for a simple thing. It's recommended
practice to use a minimal return path for error handling.
Like that:
@@ -108,6 +108,9 @@ cmd_tbl_t *find_cmd_tbl (const char *cmd, cmd_tbl_t *table, int table_len)
int len;
int n_found = 0;
+ if (!cmd)
+ return NULL;
+
/*
* Some commands allow length modifiers (like "cp.b");
* compare command name only until first dot.
Does this work for you as well? If yes, then please resubmit like
this.
Best regards,
Wolfgang Denk
--
DENX Software Engineering GmbH, MD: Wolfgang Denk & Detlev Zundel
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
Phone: (+49)-8142-66989-10 Fax: (+49)-8142-66989-80 Email: wd at denx.de
God grant me the senility to accept the things I cannot change, The
frustration to try to change things I cannot affect, and the wisdom
to tell the difference.
^ permalink raw reply [flat|nested] 7+ messages in thread
* [U-Boot] [RFC/PATCHv2 1/2] Common/command: Guard strchr/strlen from NULL pointer
2010-11-24 11:07 ` Wolfgang Denk
@ 2010-11-24 12:07 ` Thomas Weber
2010-11-27 22:19 ` Wolfgang Denk
2010-11-24 12:07 ` [U-Boot] [RFC/PATCHv2 2/2] Common/cmd_nvedit: Check for env subcommand Thomas Weber
1 sibling, 1 reply; 7+ messages in thread
From: Thomas Weber @ 2010-11-24 12:07 UTC (permalink / raw)
To: u-boot
Guard strchr/strlen from being called with NULL pointer.
This line is crashing when command "env" is called without subcommand.
The cmd is NULL in this case because the calling function "do_env"
decremented the argc without checking if there are still arguments available.
Signed-off-by: Thomas Weber <weber@corscience.de>
---
Changes for v2:
- Use shorter way to leave function in error case.
common/command.c | 2 ++
1 files changed, 2 insertions(+), 0 deletions(-)
diff --git a/common/command.c b/common/command.c
index 0020eac..0b1a3fb 100644
--- a/common/command.c
+++ b/common/command.c
@@ -108,6 +108,8 @@ cmd_tbl_t *find_cmd_tbl (const char *cmd, cmd_tbl_t *table, int table_len)
int len;
int n_found = 0;
+ if (!cmd)
+ return NULL;
/*
* Some commands allow length modifiers (like "cp.b");
* compare command name only until first dot.
--
1.7.3.2
^ permalink raw reply related [flat|nested] 7+ messages in thread
* [U-Boot] [RFC/PATCHv2 1/2] Common/command: Guard strchr/strlen from NULL pointer
2010-11-24 12:07 ` [U-Boot] [RFC/PATCHv2 1/2] Common/command: " Thomas Weber
@ 2010-11-27 22:19 ` Wolfgang Denk
0 siblings, 0 replies; 7+ messages in thread
From: Wolfgang Denk @ 2010-11-27 22:19 UTC (permalink / raw)
To: u-boot
Dear Thomas Weber,
In message <1290600472-23147-1-git-send-email-weber@corscience.de> you wrote:
> Guard strchr/strlen from being called with NULL pointer.
> This line is crashing when command "env" is called without subcommand.
>
> The cmd is NULL in this case because the calling function "do_env"
> decremented the argc without checking if there are still arguments available.
>
> Signed-off-by: Thomas Weber <weber@corscience.de>
> ---
> Changes for v2:
> - Use shorter way to leave function in error case.
>
> common/command.c | 2 ++
> 1 files changed, 2 insertions(+), 0 deletions(-)
Applied, thanks.
Best regards,
Wolfgang Denk
--
DENX Software Engineering GmbH, MD: Wolfgang Denk & Detlev Zundel
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
Phone: (+49)-8142-66989-10 Fax: (+49)-8142-66989-80 Email: wd at denx.de
Every little picofarad has a nanohenry all its own. - Don Vonada
^ permalink raw reply [flat|nested] 7+ messages in thread
* [U-Boot] [RFC/PATCHv2 2/2] Common/cmd_nvedit: Check for env subcommand
2010-11-24 11:07 ` Wolfgang Denk
2010-11-24 12:07 ` [U-Boot] [RFC/PATCHv2 1/2] Common/command: " Thomas Weber
@ 2010-11-24 12:07 ` Thomas Weber
2010-11-27 22:19 ` Wolfgang Denk
1 sibling, 1 reply; 7+ messages in thread
From: Thomas Weber @ 2010-11-24 12:07 UTC (permalink / raw)
To: u-boot
The env command needs one subcommand. If this is not available
print the usage help.
Signed-off-by: Thomas Weber <weber@corscience.de>
---
common/cmd_nvedit.c | 3 +++
1 files changed, 3 insertions(+), 0 deletions(-)
diff --git a/common/cmd_nvedit.c b/common/cmd_nvedit.c
index 3fd8abc..52c5e7c 100644
--- a/common/cmd_nvedit.c
+++ b/common/cmd_nvedit.c
@@ -848,6 +848,9 @@ static int do_env (cmd_tbl_t *cmdtp, int flag, int argc, char * const argv[])
{
cmd_tbl_t *cp;
+ if (argc < 2)
+ return cmd_usage(cmdtp);
+
/* drop initial "env" arg */
argc--;
argv++;
--
1.7.3.2
^ permalink raw reply related [flat|nested] 7+ messages in thread* [U-Boot] [RFC/PATCHv2 2/2] Common/cmd_nvedit: Check for env subcommand
2010-11-24 12:07 ` [U-Boot] [RFC/PATCHv2 2/2] Common/cmd_nvedit: Check for env subcommand Thomas Weber
@ 2010-11-27 22:19 ` Wolfgang Denk
0 siblings, 0 replies; 7+ messages in thread
From: Wolfgang Denk @ 2010-11-27 22:19 UTC (permalink / raw)
To: u-boot
Dear Thomas Weber,
In message <1290600472-23147-2-git-send-email-weber@corscience.de> you wrote:
> The env command needs one subcommand. If this is not available
> print the usage help.
>
> Signed-off-by: Thomas Weber <weber@corscience.de>
> ---
> common/cmd_nvedit.c | 3 +++
> 1 files changed, 3 insertions(+), 0 deletions(-)
Applied, thanks.
Best regards,
Wolfgang Denk
--
DENX Software Engineering GmbH, MD: Wolfgang Denk & Detlev Zundel
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
Phone: (+49)-8142-66989-10 Fax: (+49)-8142-66989-80 Email: wd at denx.de
Each kiss is as the first.
-- Miramanee, Kirk's wife, "The Paradise Syndrome",
stardate 4842.6
^ permalink raw reply [flat|nested] 7+ messages in thread
* [U-Boot] [RFC/PATCH] common/command.c: Guard strchr/strlen from NULL pointer
2010-11-24 10:15 [U-Boot] [RFC/PATCH] common/command.c: Guard strchr/strlen from NULL pointer Thomas Weber
2010-11-24 11:07 ` Wolfgang Denk
@ 2010-11-24 12:44 ` Sergei Shtylyov
1 sibling, 0 replies; 7+ messages in thread
From: Sergei Shtylyov @ 2010-11-24 12:44 UTC (permalink / raw)
To: u-boot
Hello.
On 24-11-2010 13:15, Thomas Weber wrote:
> Guard strchr/strlen from being called with NULL pointer.
> This line is crashing on OMAP3/Devkit8000 when command "env" is called without subcommand.
> Toolchain is Codesourcery 2010q1.
> The cmd is NULL in this case because the calling function "do_env" decremented the argc
> without checking if there are still arguments available.
> caller:
> static int do_env (cmd_tbl_t *cmdtp, int flag, int argc, char * const argv[])
> ...
> /* drop initial "env" arg */
> argc--;
> argv++;
>
> cp = find_cmd_tbl(argv[0], cmd_env_sub, ARRAY_SIZE(cmd_env_sub));
> Signed-off-by: Thomas Weber<weber@corscience.de>
> ---
> common/command.c | 5 +++--
> 1 files changed, 3 insertions(+), 2 deletions(-)
> diff --git a/common/command.c b/common/command.c
> index 0020eac..03a713a 100644
> --- a/common/command.c
> +++ b/common/command.c
> @@ -105,14 +105,15 @@ cmd_tbl_t *find_cmd_tbl (const char *cmd, cmd_tbl_t *table, int table_len)
> cmd_tbl_t *cmdtp;
> cmd_tbl_t *cmdtp_temp = table; /*Init value */
> const char *p;
> - int len;
> + int len = 0;
> int n_found = 0;
>
> /*
> * Some commands allow length modifiers (like "cp.b");
> * compare command name only until first dot.
> */
> - len = ((p = strchr(cmd, '.')) == NULL) ? strlen (cmd) : (p - cmd);
> + if (cmd != NULL)
> + len = ((p = strchr(cmd, '.')) == NULL) ? strlen (cmd) : (p - cmd);
checkpatch.pl would complain about the space between 'strlen' and (, so
seems a high time to fix this. Besides, it's not consistent with strchr()
invocation where there's no space...
WBR, Sergei
^ permalink raw reply [flat|nested] 7+ messages in thread
end of thread, other threads:[~2010-11-27 22:19 UTC | newest]
Thread overview: 7+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2010-11-24 10:15 [U-Boot] [RFC/PATCH] common/command.c: Guard strchr/strlen from NULL pointer Thomas Weber
2010-11-24 11:07 ` Wolfgang Denk
2010-11-24 12:07 ` [U-Boot] [RFC/PATCHv2 1/2] Common/command: " Thomas Weber
2010-11-27 22:19 ` Wolfgang Denk
2010-11-24 12:07 ` [U-Boot] [RFC/PATCHv2 2/2] Common/cmd_nvedit: Check for env subcommand Thomas Weber
2010-11-27 22:19 ` Wolfgang Denk
2010-11-24 12:44 ` [U-Boot] [RFC/PATCH] common/command.c: Guard strchr/strlen from NULL pointer Sergei Shtylyov
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox