Google Git
Sign in
pigweed / third_party / github / zephyrproject-rtos / zephyr / 97b5741adeaca069400452eef4031ee739a116e1
commit97b5741adeaca069400452eef4031ee739a116e1[log] [tgz]
authorJames Harris <james.harris@intel.com>Mon Mar 08 10:24:18 2021 -0800
committerAnas Nashif <anas.nashif@intel.com>Wed Mar 10 06:09:38 2021 -0500
tree6ec3211bdec5a6c6c2f40b21216457f236a0c5ee
parentfd6737ebc450096d8bf3e6d13d6efc52168850dd [diff]
logging: fix TOCTTOU issue in z_log_hexdump_from_user

Previously, a racing write to the provided metadata could result
in up to CONFIG_LOG_STRDUP_MAX_STRING-2 bytes after the
end of user-accessible memory being leaked into the strdup pool
or the resulting log.

For now, explicitly copy the metadata string. In an ideal world
this could directly copy from userspace into the strdup buffer, but
this obviously only works if strdup is enabled.

Signed-off-by: James Harris <james.harris@intel.com>
1 file changed
tree: 6ec3211bdec5a6c6c2f40b21216457f236a0c5ee
  1. .buildkite/
  2. .github/
  3. .known-issues/
  4. arch/
  5. boards/
  6. cmake/
  7. doc/
  8. drivers/
  9. dts/
  10. include/
  11. kernel/
  12. lib/
  13. misc/
  14. modules/
  15. samples/
  16. scripts/
  17. share/
  18. soc/
  19. subsys/
  20. tests/
  21. .checkpatch.conf
  22. .clang-format
  23. .codecov.yml
  24. .editorconfig
  25. .gitattributes
  26. .gitignore
  27. .gitlint
  28. .mailmap
  29. .uncrustify.cfg
  30. CMakeLists.txt
  31. CODE_OF_CONDUCT.md
  32. CODEOWNERS
  33. CONTRIBUTING.rst
  34. Kconfig
  35. Kconfig.zephyr
  36. LICENSE
  37. MAINTAINERS.yml
  38. Makefile
  39. README.rst
  40. VERSION
  41. version.h.in
  42. west.yml
  43. zephyr-env.cmd
  44. zephyr-env.sh