NetBSD Problem Report #50907

From www@NetBSD.org  Mon Mar  7 12:08:20 2016
Return-Path: <www@NetBSD.org>
Received: from mail.netbsd.org (mail.netbsd.org [199.233.217.200])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(Client CN "mail.netbsd.org", Issuer "Postmaster NetBSD.org" (verified OK))
	by mollari.NetBSD.org (Postfix) with ESMTPS id B39227ABE5
	for <gnats-bugs@gnats.NetBSD.org>; Mon,  7 Mar 2016 12:08:20 +0000 (UTC)
Message-Id: <20160307120819.9ED4B7ACBA@mollari.NetBSD.org>
Date: Mon,  7 Mar 2016 12:08:19 +0000 (UTC)
From: dcb314@hotmail.com
Reply-To: dcb314@hotmail.com
To: gnats-bugs@NetBSD.org
Subject: src/lib/libresolv/hmac_link.c: clumsy call to memset ?
X-Send-Pr-Version: www-1.0

>Number:         50907
>Category:       lib
>Synopsis:       src/lib/libresolv/hmac_link.c: clumsy call to memset ?
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    lib-bug-people
>State:          closed
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Mon Mar 07 12:10:00 +0000 2016
>Closed-Date:    Mon Mar 07 14:39:18 +0000 2016
>Last-Modified:  Mon Mar 07 14:40:00 +0000 2016
>Originator:     David Binderman
>Release:        cvs dated 20160305
>Organization:
>Environment:
>Description:
[src/lib/libresolv/hmac_link.c:285] -> [src/lib/libresolv/hmac_link.c:287]: (performance) Buffer 'buff' is being written before its old content has been used.

Source code is

    memset(buff, 0, buff_len);  /*%< just in case */
    /* write file header */
    snprintf(buff, buff_len, KEY_FILE_FMT_STR, KEY_FILE_FORMAT,
        KEY_HMAC_MD5, "HMAC");

    bp = buff + strlen(buff);

Maybe better code

    /* write file header */
    snprintf(buff, buff_len, KEY_FILE_FMT_STR, KEY_FILE_FORMAT,
        KEY_HMAC_MD5, "HMAC");

    bp = buff + strlen(buff);
    memset(bp, 0, buff_len - (bp - buff));  /*%< just in case */

>How-To-Repeat:

>Fix:

>Release-Note:

>Audit-Trail:

State-Changed-From-To: open->closed
State-Changed-By: wiz@NetBSD.org
State-Changed-When: Mon, 07 Mar 2016 14:39:18 +0000
State-Changed-Why:
Fixed by christos, thanks.


From: "Christos Zoulas" <christos@netbsd.org>
To: gnats-bugs@gnats.NetBSD.org
Cc: 
Subject: PR/50907 CVS commit: src/lib/libresolv
Date: Mon, 7 Mar 2016 09:35:39 -0500

 Module Name:	src
 Committed By:	christos
 Date:		Mon Mar  7 14:35:39 UTC 2016

 Modified Files:
 	src/lib/libresolv: hmac_link.c

 Log Message:
 PR/50907: David Binderman: Remove useless strlen()'s and memcpy()'s.


 To generate a diff of this commit:
 cvs rdiff -u -r1.2 -r1.3 src/lib/libresolv/hmac_link.c

 Please note that diffs are not public domain; they are subject to the
 copyright notices on the relevant files.

>Unformatted:
NetBSD Home
NetBSD PR Database Search
(Contact us) $NetBSD: query-full-pr,v 1.39 2013/11/01 18:47:49 spz Exp $
$NetBSD: gnats_config.sh,v 1.8 2006/05/07 09:23:38 tsutsui Exp $
Copyright © 1994-2014 The NetBSD Foundation, Inc. ALL RIGHTS RESERVED.