Experimental Physics and Industrial Control System
> it is still used in some support modules.
Can you link an example? I'm interested in if/how NULL is handled.
--
You received this bug notification because you are a member of EPICS
Core Developers, which is subscribed to EPICS Base.
Matching subscriptions: epics-core-list-subscription
https://bugs.launchpad.net/bugs/1824732
Title:
iocsh crashes when dealing with NULL iocshArgPersistentString
Status in EPICS Base:
Triaged
Status in EPICS Base 3.15 series:
Triaged
Status in EPICS Base 7.0 series:
Triaged
Bug description:
I was looking at the iocsh.cpp (@R7.0.2.1) code and realized that
there's a bug when parsing command arguments of type
iocshArgPersistentString. The code in cvtArg does the following:
case iocshArgPersistentString:
argBuf->sval = (char *) malloc(strlen(arg) + 1);
if (argBuf->sval == NULL) {
showError(filename, lineno, "Out of memory");
return 0;
}
strcpy(argBuf->sval, arg);
break;
However, here 'arg' can be NULL, so 'strlen' can (will?) SEGFAULT. I
was able to successfully trigger the issue. I don't know where this is
used or who uses this functionality exactly.
To manage notifications about this bug go to:
https://bugs.launchpad.net/epics-base/+bug/1824732/+subscriptions
- Navigate by Date:
- Prev:
Jenkins build is back to stable : epics-7.0 » linux32 #192 APS Jenkins via Core-talk
- Next:
Re: Results from analyzing Codacy issues Konrad, Martin via Core-talk
- Index:
2002
2003
2004
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
<2020>
2021
2022
2023
2024
- Navigate by Thread:
- Prev:
[Bug 1862920] [NEW] Possible memory leak in modules/libcom/src/log/iocLogServer.c Karl Vestin via Core-talk
- Next:
Build failed: epics-base-test base-7.0-33 AppVeyor via Core-talk
- Index:
2002
2003
2004
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
<2020>
2021
2022
2023
2024