From mboxrd@z Thu Jan 1 00:00:00 1970 X-Msuck: nntp://news.gmane.org/gmane.linux.lib.musl.general/6060 Path: news.gmane.org!not-for-mail From: Alexander Monakov Newsgroups: gmane.linux.lib.musl.general Subject: New static analysis results Date: Thu, 4 Sep 2014 20:45:45 +0400 (MSK) Message-ID: Reply-To: musl@lists.openwall.com NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Trace: ger.gmane.org 1409849265 20076 80.91.229.3 (4 Sep 2014 16:47:45 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Thu, 4 Sep 2014 16:47:45 +0000 (UTC) To: musl@lists.openwall.com Original-X-From: musl-return-6073-gllmg-musl=m.gmane.org@lists.openwall.com Thu Sep 04 18:47:38 2014 Return-path: Envelope-to: gllmg-musl@plane.gmane.org Original-Received: from mother.openwall.net ([195.42.179.200]) by plane.gmane.org with smtp (Exim 4.69) (envelope-from ) id 1XPaC9-0001Xc-Ed for gllmg-musl@plane.gmane.org; Thu, 04 Sep 2014 18:47:37 +0200 Original-Received: (qmail 31900 invoked by uid 550); 4 Sep 2014 16:47:36 -0000 Mailing-List: contact musl-help@lists.openwall.com; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: Original-Received: (qmail 31887 invoked from network); 4 Sep 2014 16:47:36 -0000 User-Agent: Alpine 2.00 (LNX 1167 2008-08-23) Xref: news.gmane.org gmane.linux.lib.musl.general:6060 Archived-At: Hello, I'm happy to report a few new results from running static code analysis on musl (from a tool developed where I work). ctime.c:5 localtime(t) may return NULL, but that will cause UB in asctime regexec.c:253 "return REG_NOMATCH;" in GET_NEXT_WCHAR leaks memory allocated for 'buf' lookup_serv.c:55 getnameinfo.c:99 pointless "if (!p) continue;" when "if (!*p) continue;" was probably intended fpathconf.c off-by-one error in range check (if (name >= sizeof ...)) Alexander