[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-08-24 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 Mark Linimon changed: What|Removed |Added Resolution|--- |FIXED Status|In Progres

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-06-01 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #14 from commit-h...@freebsd.org --- A commit references this bug: Author: kib Date: Thu Jun 1 13:22:05 UTC 2017 New revision: 319419 URL: https://svnweb.freebsd.org/changeset/base/319419 Log: MFC r318450: Add tests for so

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-06-01 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #13 from commit-h...@freebsd.org --- A commit references this bug: Author: kib Date: Thu Jun 1 13:20:47 UTC 2017 New revision: 319418 URL: https://svnweb.freebsd.org/changeset/base/319418 Log: MFC r318450: Add tests for so

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-30 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 Kubilay Kocak changed: What|Removed |Added CC||freebsd-secur...@freebsd.or

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-30 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #12 from Kubilay Kocak --- Track branches MFC'd to -- You are receiving this mail because: You are on the CC list for the bug. ___ freebsd-security@freebsd.org mailing list https://l

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-29 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #10 from commit-h...@freebsd.org --- A commit references this bug: Author: kib Date: Mon May 29 12:58:31 UTC 2017 New revision: 319129 URL: https://svnweb.freebsd.org/changeset/base/319129 Log: MFC r318298: Fix several buff

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-29 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #9 from commit-h...@freebsd.org --- A commit references this bug: Author: kib Date: Mon May 29 12:52:13 UTC 2017 New revision: 319126 URL: https://svnweb.freebsd.org/changeset/base/319126 Log: MFC r318298: Fix several buffe

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-18 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #8 from commit-h...@freebsd.org --- A commit references this bug: Author: kib Date: Thu May 18 13:49:53 UTC 2017 New revision: 318450 URL: https://svnweb.freebsd.org/changeset/base/318450 Log: Add tests for some cases in r318

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-18 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #7 from Jan Kokemüller --- Created attachment 182684 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=182684&action=edit More tests for realpath(3) Here is a patch that adds 'lib/libc/tests/gen/realpath2_test.c'. The

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-15 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #6 from Konstantin Belousov --- (In reply to commit-hook from comment #5) I committed the patch almost as is, the bits I omitted are asserts. Generally, library must not kill the application. If you consider it is more appropr

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-15 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #5 from commit-h...@freebsd.org --- A commit references this bug: Author: kib Date: Mon May 15 17:14:53 UTC 2017 New revision: 318298 URL: https://svnweb.freebsd.org/changeset/base/318298 Log: Fix several buffer overflows in

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-11 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #4 from Konstantin Belousov --- (In reply to Jan Kokemüller from comment #3) Yes, the new test file is better, we prefer to not modify third-party code to ease future imports. -- You are receiving this mail because: You are th

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-11 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #3 from Jan Kokemüller --- I've added some tests to a local copy of 'contrib/netbsd-tests/lib/libc/gen/t_realpath.c' [1]. Would a new file in 'lib/libc/tests/gen' be a better place? realpath_buffer_overflow: This tests for the

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-10 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #2 from Konstantin Belousov --- Overall this looks fine. Could you add the tests to our test suite for (most of all) situations you found ? -- You are receiving this mail because: You are the assignee for the bug. ___

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-10 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 --- Comment #1 from Jan Kokemüller --- I found those bugs with LLVM libFuzzer [1]. The fuzz target here [2] should generate some interesting inputs fairly quickly (when using on the unpatched realpath(3)). This fuzzer results in 100% code c

[Bug 219154] [PATCH] buffer overflows in realpath(3)

2017-05-08 Thread bugzilla-noreply
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219154 Conrad Meyer changed: What|Removed |Added CC||c...@freebsd.org,