Diffusion FreeBSD src repository 953b93cf24d8

memcmp.S: harden against phony buffer lengths
953b93cf24d8
Actions

Description

lib/libc/amd64/string/memcmp.S: harden against phony buffer lengths

When memcmp(a, b, len) (or equally, bcmp) is called with a phony length
such that a + len < a, the code would malfunction and not compare the
two buffers correctly. While such arguments are illegal (buffers do not
wrap around the end of the address space), it is neverthless conceivable
that people try things like memcmp(a, b, SIZE_MAX) to compare a and b
until the first mismatch, in the knowledge that such a mismatch exists,
expecting memcmp() to stop comparing somewhere around the mismatch.
While memcmp() is usually written to confirm to this assumption, no
version of ISO/IEC 9899 guarantees this behaviour (in contrast to
memchr() for which it is).

Neverthless it appears sensible to at least not grossly misbehave on
phony lengths. This change hardens memcmp() against this case by
comparing at least until the end of the address space if a + len
overflows a 64 bit integer.

Sponsored by: The FreeBSD Foundation
Approved by: mjg (blanket, via IRC)
See also: b2618b651b28fd29e62a4e285f5be09ea30a85d4
MFC after: 1 week

Details

Provenance

fuz	Authored on Sep 14 2023, 5:19 AM

Parents

rG7e0a7ef95fac: tcpdump: Initialize tzcode early.

Branches

Unknown

Tags

Unknown

Event Timeline

fuz committed rG953b93cf24d8: lib/libc/amd64/string/memcmp.S: harden against phony buffer lengths (authored by fuz).Sep 16 2023, 4:20 AM

fuz mentioned this in rG0666c6fc0322: lib/libc/amd64/string/memcmp.S: harden against phony buffer lengths.Sep 23 2023, 6:23 PM

Changes (1)

Path

Size

lib/

libc/

amd64/

string/

memcmp.S

rG953b93cf24d8

View Options

lib/libc/amd64/string/memcmp.S