Page MenuHomeFreeBSD
Differential D17543

strptime: disallow zero hour for %I and %l
ClosedPublic
Actions

Authored by yuripv on Oct 13 2018, 12:00 AM.
Tags
None
Referenced Files
Unknown Object (File)
Mar 29 2024, 12:28 AM
Unknown Object (File)
Mar 7 2024, 11:56 PM
Unknown Object (File)
Mar 4 2024, 1:50 PM
Unknown Object (File)
Mar 4 2024, 1:50 PM
Unknown Object (File)
Mar 4 2024, 1:50 PM
Unknown Object (File)
Mar 4 2024, 1:50 PM
Unknown Object (File)
Mar 4 2024, 1:50 PM
Unknown Object (File)
Mar 4 2024, 1:38 PM
View All 39 Files
Subscribers
imp

Details

Reviewers
kib
Commits
rS339346: strptime: disallow zero hour for %I (defined by POSIX as [01,12]) and %l
Summary

%I (capital letter) is defined by POSIX as below:

%I    The hour (12-hour clock) [01,12]; leading zeros are permitted but not required.

%l (el) is extensions and is defined in strftime(3) as below:

%l    is replaced by the hour (12-hour clock) as a decimal number (1-12);
        single digits are preceded by a blank.
Test Plan

Looking into actually adding src/lib/libc/tests/time to the build (that's how I initially found the problem, running the test cases), for the moment:

#include <err.h>
#include <time.h>

int
main(void)
{
        struct tm tm;

        if (strptime("00", "%I", &tm) != NULL ||
            strptime("00", "%l", &tm) != NULL)
                errx(1, "wrong");

        return (0);
}

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

yuripv created this revision.Oct 13 2018, 12:00 AM
Herald added a subscriber: imp. · View Herald TranscriptOct 13 2018, 12:00 AM
yuripv updated this revision to Diff 49084.Oct 13 2018, 12:13 AM

simplify the check

kib added inline comments.Oct 13 2018, 12:15 AM
lib/libc/stdtime/strptime.c
294 ↗(On Diff #49083)

Can't you just change this line to

} else if (i == 0 || i > 12)

to the same effect, but three lines less ?

yuripv updated this revision to Diff 49085.Oct 13 2018, 12:18 AM

simplify even more

yuripv marked 2 inline comments as done.Oct 13 2018, 12:19 AM
yuripv added inline comments.
lib/libc/stdtime/strptime.c
294 ↗(On Diff #49083)

Indeed, thanks.

kib added a comment.Oct 13 2018, 12:19 AM

I think that all hand-rolled string->number conversions in this file should check for overflow. Otherwise we call for undefined behavior and allow compiler authors to bully us.

Or change i to unsigned type, not sure what is better actually.

yuripv marked an inline comment as done.Oct 13 2018, 12:21 AM
kib accepted this revision.Oct 13 2018, 12:26 AM
This revision is now accepted and ready to land.Oct 13 2018, 12:26 AM
yuripv added a comment.Oct 13 2018, 12:42 AM

Agreed, this needs to be looked at, and according to tests results, there are a lot more issues with strptime() (comparing with standard and linux output as well).

Closed by commit rS339346: strptime: disallow zero hour for %I (defined by POSIX as [01,12]) and %l (authored by yuripv). · Explain WhyOct 13 2018, 4:26 PM
This revision was automatically updated to reflect the committed changes.

Revision Contents
Changeset List

PathSize
head/
lib/
libc/
stdtime/
2 lines

Diff 49096

View Options

head/lib/libc/stdtime/strptime.c

Loading...