From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 23582 invoked by alias); 8 Aug 2012 07:31:06 -0000 Received: (qmail 23554 invoked by uid 22791); 8 Aug 2012 07:31:03 -0000 X-SWARE-Spam-Status: No, hits=-2.8 required=5.0 tests=AWL,BAYES_00,KHOP_THREADED X-Spam-Check-By: sourceware.org Received: from hagrid.ecoscentric.com (HELO mail.ecoscentric.com) (212.13.207.197) by sourceware.org (qpsmtpd/0.43rc1) with ESMTP; Wed, 08 Aug 2012 07:30:51 +0000 Received: from localhost (hagrid.ecoscentric.com [127.0.0.1]) by mail.ecoscentric.com (Postfix) with ESMTP id E41892F78004 for ; Wed, 8 Aug 2012 08:30:49 +0100 (BST) Received: from mail.ecoscentric.com ([127.0.0.1]) by localhost (hagrid.ecoscentric.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 16wpSptHfB3s; Wed, 8 Aug 2012 08:30:48 +0100 (BST) From: bugzilla-daemon@bugs.ecos.sourceware.org To: ecos-patches@ecos.sourceware.org Subject: [Bug 1001490] C99 snprintf() does not include terminated null in truncated strings X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: eCos X-Bugzilla-Component: Patches and contributions X-Bugzilla-Keywords: X-Bugzilla-Severity: enhancement X-Bugzilla-Who: bernd.edlinger@hotmail.de X-Bugzilla-Status: NEW X-Bugzilla-Priority: low X-Bugzilla-Assigned-To: unassigned@bugs.ecos.sourceware.org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Changed-Fields: In-Reply-To: References: X-Bugzilla-URL: http://bugs.ecos.sourceware.org/ Auto-Submitted: auto-generated Content-Type: text/plain; charset="UTF-8" MIME-Version: 1.0 Date: Wed, 08 Aug 2012 07:31:00 -0000 Message-Id: <20120808073048.ADE222F78005@mail.ecoscentric.com> Mailing-List: contact ecos-patches-help@ecos.sourceware.org; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Post: List-Help: , Sender: ecos-patches-owner@ecos.sourceware.org X-SW-Source: 2012-08/txt/msg00011.txt.bz2 Please do not reply to this email. Use the web interface provided at: http://bugs.ecos.sourceware.org/show_bug.cgi?id=1001490 --- Comment #4 from Bernd Edlinger 2012-08-08 08:30:42 BST --- (In reply to comment #3) oops, sorry... Now I see, actually I applied the my own patch from http://bugs.ecos.sourceware.org/show_bug.cgi?id=1001628 a while ago, it contained a new test case... // Check 7 ret = snprintf(y, 20, "bit of that: %.4g double", 1.0012); my_strcpy(z, "bit of that: 1.001 "); CYG_TEST_PASS_FAIL(my_strcmp(y,z) == 0, "snprintf double test #2"); CYG_TEST_PASS_FAIL(ret == my_strlen(z), "snprintf double test #2 return code"); when that did fail after applying your patch, I was surprised. Well, there is more trouble with sprintf.... There is another bug #20804, about the %e format, that is also still not fixed. When I tried to understand, why that happens, I found a buffer overflow in the statement: printf("%.15f", DBL_MAX); There is a buffer in vfnprintf() which is 2 characters too small. Maybe there should be a patch for all of the known issues. What do you think? Bernd. -- Configure bugmail: http://bugs.ecos.sourceware.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.