glibc.git/misc/syslog.c, branch master Unnamed repository; edit this file 'description' to name the repository. Enable --enable-fortify-source with clang 2025-11-21T16:13:11+00:00 Adhemerval Zanella adhemerval.zanella@linaro.org 2025-11-20T18:30:11+00:00 8d26bed1ebcefd5d2059fd7d7462bdf6593d77fa clang generates internal calls for some _chk symbol, so add internal aliases for them, and stub some with rtld-stubbed-symbols to avoid ld.so linker issues. Reviewed-by: Sam James <sam@gentoo.org> 
clang generates internal calls for some _chk symbol, so add internal
aliases for them, and stub some with rtld-stubbed-symbols to avoid
ld.so linker issues.

Reviewed-by: Sam James <sam@gentoo.org>
misc: Fix clang -Wstring-plus-int warnings on syslog 2025-10-22T19:35:39+00:00 Adhemerval Zanella adhemerval.zanella@linaro.org 2022-04-29T13:50:13+00:00 6e862a07f79e931ac790315ccd7e1942d2b42382 clang issues: syslog.c:193:9: error: adding 'int' to a string does not append to the string [-Werror,-Wstring-plus-int] 193 | SYSLOG_HEADER (pri, timestamp, &msgoff, pid)); | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ syslog.c:180:7: note: expanded from macro 'SYSLOG_HEADER' 180 | "[" + (pid == 0), pid, "]" + (pid == 0) Use array indexes instead of string addition (it is simpler than add a supress warning). 
clang issues:

syslog.c:193:9: error: adding 'int' to a string does not append to the string [-Werror,-Wstring-plus-int]
  193 |                       SYSLOG_HEADER (pri, timestamp, &msgoff, pid));
      |                       ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
syslog.c:180:7: note: expanded from macro 'SYSLOG_HEADER'
  180 |   "[" + (pid == 0), pid, "]" + (pid == 0)

Use array indexes instead of string addition (it is simpler than
add a supress warning).
syslog: Fix integer overflow in __vsyslog_internal (CVE-2023-6780) 2024-01-30T14:53:37+00:00 Arjun Shankar arjun@redhat.com 2024-01-15T16:44:45+00:00 ddf542da94caf97ff43cc2875c88749880b7259b __vsyslog_internal calculated a buffer size by adding two integers, but did not first check if the addition would overflow. This commit fixes that. Reviewed-by: Carlos O'Donell <carlos@redhat.com> Tested-by: Carlos O'Donell <carlos@redhat.com> 
__vsyslog_internal calculated a buffer size by adding two integers, but
did not first check if the addition would overflow.  This commit fixes
that.

Reviewed-by: Carlos O'Donell <carlos@redhat.com>
Tested-by: Carlos O'Donell <carlos@redhat.com>
syslog: Fix heap buffer overflow in __vsyslog_internal (CVE-2023-6779) 2024-01-30T14:53:37+00:00 Arjun Shankar arjun@redhat.com 2024-01-15T16:44:44+00:00 7e5a0c286da33159d47d0122007aac016f3e02cd __vsyslog_internal used the return value of snprintf/vsnprintf to calculate buffer sizes for memory allocation. If these functions (for any reason) failed and returned -1, the resulting buffer would be too small to hold output. This commit fixes that. All snprintf/vsnprintf calls are checked for negative return values and the function silently returns upon encountering them. Reviewed-by: Carlos O'Donell <carlos@redhat.com> 
__vsyslog_internal used the return value of snprintf/vsnprintf to
calculate buffer sizes for memory allocation.  If these functions (for
any reason) failed and returned -1, the resulting buffer would be too
small to hold output.  This commit fixes that.

All snprintf/vsnprintf calls are checked for negative return values and
the function silently returns upon encountering them.

Reviewed-by: Carlos O'Donell <carlos@redhat.com>
syslog: Fix heap buffer overflow in __vsyslog_internal (CVE-2023-6246) 2024-01-30T14:53:37+00:00 Arjun Shankar arjun@redhat.com 2024-01-15T16:44:43+00:00 6bd0e4efcc78f3c0115e5ea9739a1642807450da __vsyslog_internal did not handle a case where printing a SYSLOG_HEADER containing a long program name failed to update the required buffer size, leading to the allocation and overflow of a too-small buffer on the heap. This commit fixes that. It also adds a new regression test that uses glibc.malloc.check. Reviewed-by: Adhemerval Zanella <adhemerval.zanella@linaro.org> Reviewed-by: Carlos O'Donell <carlos@redhat.com> Tested-by: Carlos O'Donell <carlos@redhat.com> 
__vsyslog_internal did not handle a case where printing a SYSLOG_HEADER
containing a long program name failed to update the required buffer
size, leading to the allocation and overflow of a too-small buffer on
the heap.  This commit fixes that.  It also adds a new regression test
that uses glibc.malloc.check.

Reviewed-by: Adhemerval Zanella  <adhemerval.zanella@linaro.org>
Reviewed-by: Carlos O'Donell <carlos@redhat.com>
Tested-by: Carlos O'Donell <carlos@redhat.com>
misc/bits/syslog.h: Clearly separate declaration from definition 2023-07-05T14:59:48+00:00 Frédéric Bérat fberat@redhat.com 2023-04-26T09:59:08+00:00 ba745eff4621d599be3d14d32d490debaef5a117 This allows to include bits/syslog-decl.h in include/sys/syslog.h and therefore be able to create the libc_hidden_builtin_proto (__syslog_chk) prototype. Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org> 
This allows to include bits/syslog-decl.h in include/sys/syslog.h and
therefore be able to create the libc_hidden_builtin_proto (__syslog_chk)
prototype.

Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org>
syslog: Remove extra whitespace between timestamp and message (BZ#29544) 2022-09-05T12:34:39+00:00 Adhemerval Zanella adhemerval.zanella@linaro.org 2022-09-05T12:34:39+00:00 45459476ecc8fe315734912baf7adf3551cff640 The rfc3164 clear states that a single space character must follow the timestamp field. Checked on x86_64-linux-gnu. 
The rfc3164 clear states that a single space character must follow
the timestamp field.

Checked on x86_64-linux-gnu.
syslog: Fix large messages (BZ#29536) 2022-08-30T11:54:52+00:00 Adhemerval Zanella adhemerval.zanella@linaro.org 2022-08-28T19:52:53+00:00 52a5be0df411ef3ff45c10c7c308cb92993d15b1 The a583b6add407c17cd change did not handle large messages that would require a heap allocation correctly, where the message itself is not take in consideration. This patch fixes it and extend the tst-syslog to check for large messages as well. Checked on x86_64-linux-gnu. Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org> 
The a583b6add407c17cd change did not handle large messages that
would require a heap allocation correctly, where the message itself
is not take in consideration.

This patch fixes it and extend the tst-syslog to check for large
messages as well.

Checked on x86_64-linux-gnu.

Reviewed-by: Siddhesh Poyarekar <siddhesh@sourceware.org>
misc: Use 64 bit time_t interfaces on syslog 2022-04-15T13:41:54+00:00 Adhemerval Zanella adhemerval.zanella@linaro.org 2022-03-18T13:10:53+00:00 ac0d208b54fe78ff378afce8003467c763c6a74a It also handles the highly unlikely case where localtime might return NULL, in this case only the PRI is set to hopefully instruct the relay to get eh TIMESTAMP (as defined by the RFC). Checked on x86_64-linux-gnu and i686-linux-gnu. 
It also handles the highly unlikely case where localtime might return
NULL, in this case only the PRI is set to hopefully instruct the relay
to get eh TIMESTAMP (as defined by the RFC).

Checked on x86_64-linux-gnu and i686-linux-gnu.
misc: syslog: Use fixed-sized buffer and remove memstream 2022-04-15T13:41:54+00:00 Adhemerval Zanella adhemerval.zanella@linaro.org 2021-10-05T12:58:09+00:00 a583b6add407c17cdcd4146be3876061a5e1d555 A fixed-sized buffer is used instead of memstream for messages up to 1024 bytes to avoid the potential BUFSIZ (8K) malloc and free for each syslog call. Also, since the buffer size is know, memstream is replaced with a malloced buffer for larger messages. Checked on x86_64-linux-gnu. 
A fixed-sized buffer is used instead of memstream for messages up to
1024 bytes to avoid the potential BUFSIZ (8K) malloc and free for
each syslog call.

Also, since the buffer size is know, memstream is replaced with a
malloced buffer for larger messages.

Checked on x86_64-linux-gnu.