Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Message-ID: <4226B59F.2020307@cwilson.fastmail.fm>
Date: Thu, 03 Mar 2005 01:58:39 -0500
From: Charles Wilson <cygwin AT cwilson DOT fastmail DOT fm>
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
MIME-Version: 1.0
To: cygwin AT cygwin DOT com
Subject: Re: cygstart patch
References: <49D88D820A7BC0479A7B0932D4219EFE1DD0EC AT NAEAPAXREX04VA DOT nadsusea DOT nads DOT navy DOT mil>
In-Reply-To: <49D88D820A7BC0479A7B0932D4219EFE1DD0EC@NAEAPAXREX04VA.nadsusea.nads.navy.mil>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit

Derosa, Anthony CIV NAVAIR 2035, 2, 205/214 wrote:
> I found a small bug and added a feature to the cygstart utility, which is part of the cygutils package.  The feature that I added removes the limit on the length of the command line arguments passed to the target application, which was previously limited to MAX_PATH.  The bug I fixed was in regard to freeing the variable "args" instead of tyring to free "workDir" twice.  A patch and change log follow below.  As this is my first contribution, please correct me if I did something incorrectly.

Thanks for the patch, Anthony.  It looks good (I can't beLIEVE the 
thinko on free(workDir) )  -- but I have one concern.  Maybe it's 
overblown, but replacing all of the strNcat calls (which are somewhat 
resistant to buffer overruns) with strcat (which are NOT) seems to be 
mistake.

OTOH, I can't see anyway around it without ALSO calling strlen() -- and 
if strlen() succeeds without "going off into the weeds", the strcat() 
will too, so you might as well just use strcat since strNcat+strlen is 
not really any more safe.

I'm not an expert on these issues; anybody else want to chime in here 
before I apply Anthony's patch?

--
Chuck



> --- ../cygutils-1.2.6/src/cygstart/cygstart.c	2002-03-16 00:49:44.000000000 -0500
> +++ src/cygstart/cygstart.c	2005-03-02 09:16:00.383625000 -0500
> @@ -340,14 +340,18 @@ int main(int argc, const char **argv)
>  
>      /* Retrieve any arguments */
>      if (rest && *rest) {
> -        if ((args = (char *) malloc(MAX_PATH+1)) == NULL) {
> +        if ((args = (char *) malloc(strlen(*rest)+1)) == NULL) {
>              fprintf(stderr, "%s: memory allocation error\n", argv[0]);
>              exit(1);
> -        }
> -        strncpy(args, *rest, MAX_PATH);
> +        }	 
> +        strcpy(args, *rest);
>          while (rest++ && *rest) {
> -            strncat(args, " ", MAX_PATH-strlen(args));
> -            strncat(args, *rest, MAX_PATH-strlen(args));
> +            if ( (args = (char *) realloc(args, strlen(args) + strlen(*rest) + 1)) == NULL) {
> +                fprintf(stderr, "%s: memory allocation error\n", argv[0]);
> +                exit(1);
> +            }		
> +            strcat(args, " ");
> +            strcat(args, *rest);
>          }
>      }
>  
> @@ -359,7 +363,7 @@ int main(int argc, const char **argv)
>      if (action)
>          free(action);
>      if (args)
> -        free(workDir);
> +        free(args);

D'oh!


>      if (workDir)
>          free(workDir);
>      if (file)
> 


--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/