Invalid memory reads in first_non_fsm_start_char_cstring (utf_validate.c)

From: Hanno Böck <hanno_at_hboeck.de>
Date: Sat, 19 Dec 2015 00:03:59 +0100

Hi,

I recently tested to compile subversion with address sanitizer and it
would immediately show a global out of bounds read when showing the
help screen (svn help).

I actually was surprised that this seems to be semi-intentional. The
code in utf_validate.c has a comment stating that this reads
uninitialized bytes and there is an #ifdef option to disable it.

I think this is bad programming behavior and shouldn't be done in
production code. Reading invalid memory is undefined behavior in C,
therefore you cannot rely on that your software will function properly
when using such code.

cu,

-- 
Hanno Böck
http://hboeck.de/
mail/jabber: hanno_at_hboeck.de
GPG: BBB51E42

application/pgp-signature attachment: OpenPGP digital signature

Received on 2015-12-19 00:03:58 CET

This message: [ Message body ]
Next message: Daniel Shahaf: "Re: [RFC] An element-based 'svn merge'"
Previous message: Philip Martin: "Re: [RFC] An element-based 'svn merge'"
Next in thread: Branko Čibej: "Re: Invalid memory reads in first_non_fsm_start_char_cstring (utf_validate.c)"
Reply: Branko Čibej: "Re: Invalid memory reads in first_non_fsm_start_char_cstring (utf_validate.c)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]