ruby-core

On 4/11/06, Marcus Rueckert <mrueckert@suse.de> wrote:> On 2006-04-12 02:04:32 +0900, Eric Hodel wrote:> > This package was installed incorrectly. Third party ruby packages go> > in /usr/lib/ruby/site_ruby/1.8/> from a distributors point of view i would leave the site_ruby part for> packages installed by an user. so you can differ between distro packaged> libraries and user installed libraries. in perl you have the vendor dir> for that. but that is missing in ruby so far. so i think putting them> into the main dir is the better choice atm.

[#7711] Re: site_ruby or not site_ruby (was: Re: Bug in libsnmp-ruby1.8) — Eric Hodel <drbrain@...7.net> 2006/04/11

On Apr 11, 2006, at 10:20 AM, Marcus Rueckert wrote:

[#7713] Re: site_ruby or not site_ruby (was: Re: Bug in libsnmp-ruby1.8) — Marcus Rueckert <mrueckert@...> 2006/04/11

On 2006-04-12 02:45:07 +0900, Eric Hodel wrote:

[#7714] Re: site_ruby or not site_ruby (was: Re: Bug in libsnmp-ruby1.8) — Eric Hodel <drbrain@...7.net> 2006/04/11

On Apr 11, 2006, at 11:14 AM, Marcus Rueckert wrote:

[#7715] Re: site_ruby or not site_ruby — mathew <meta@...> 2006/04/11

Marcus Rueckert wrote:

[#7716] ri crash when merging different ri — Eric Hodel <drbrain@...7.net>

If ri for a document is split across two files but one has no extra

1 message 2006/04/12

[#7717] Test::Unit::Assertions RDoc — Eric Hodel <drbrain@...7.net>

This patch contains some spiffy RDoc for Test::Unit::Assertions. No

1 message 2006/04/12

[#7721] Ruby mentor in Googe's Summer of Code — "Evan Phoenix" <evan@...>

We missed out on it last year, so lets this year try to get ruby

4 messages 2006/04/16

[#7722] Re: Ruby mentor in Googe's Summer of Code — Florian Gro<florgro@...> 2006/04/16

Evan Phoenix wrote:

[#7723] Re: Ruby mentor in Googe's Summer of Code — Christian Neukirchen <chneukirchen@...> 2006/04/16

Florian Gro<florgro@gmail.com> writes:

[#7724] Re: Ruby mentor in Googe's Summer of Code — dblack@... 2006/04/16

Hi --

[#7725] readpartial not working on ARM — Joel VanderWerf <vjoel@...>

7 messages 2006/04/17

[#7728] Re: readpartial not working on ARM — Joel VanderWerf <vjoel@...> 2006/04/17

Joel VanderWerf wrote:

[#7730] Re: readpartial not working on ARM — Tanaka Akira <akr@...17n.org> 2006/04/18

In article <4443534E.5030303@path.berkeley.edu>,

[#7733] Re: readpartial not working on ARM — Joel VanderWerf <vjoel@...> 2006/04/18

Tanaka Akira wrote:

[#7735] Re: readpartial not working on ARM — Yukihiro Matsumoto <matz@...> 2006/04/18

Hi,

[#7736] Re: readpartial not working on ARM — Joel VanderWerf <vjoel@...> 2006/04/18

Joel VanderWerf wrote:

[#7731] Re: readpartial not working on ARM — ara.t.howard@... 2006/04/18

On Tue, 18 Apr 2006, Tanaka Akira wrote:

[#7726] Windows DEP causes crash — noreply@...

Bugs item #4135, was opened at 2006-04-17 07:16

1 message 2006/04/17

[#7727] Stack trace doesn't include class — noreply@...

Bugs item #4151, was opened at 2006-04-17 23:10

10 messages 2006/04/17

[#7734] Re: [ ruby-Bugs-4151 ] Stack trace doesn't include class — Eric Hodel <drbrain@...7.net> 2006/04/18

On Apr 17, 2006, at 1:11 PM, noreply@rubyforge.org wrote:

[#7741] Re: [ ruby-Bugs-4151 ] Stack trace doesn't include class — Mathieu Bouchard <matju@...> 2006/04/19

On Wed, 19 Apr 2006, Eric Hodel wrote:

[#7747] Re: [ ruby-Bugs-4151 ] Stack trace doesn't include class — dblack@... 2006/04/20

Hi --

[#7748] Re: [ ruby-Bugs-4151 ] Stack trace doesn't include class — Mathieu Bouchard <matju@...> 2006/04/20

On Fri, 21 Apr 2006 dblack@wobblini.net wrote:

[#7749] Re: [ ruby-Bugs-4151 ] Stack trace doesn't include class — dblack@... 2006/04/20

Hi --

[#7750] Re: [ ruby-Bugs-4151 ] Stack trace doesn't include class — Mathieu Bouchard <matju@...> 2006/04/20

On Fri, 21 Apr 2006 dblack@wobblini.net wrote:

[#7752] Re: [ ruby-Bugs-4151 ] Stack trace doesn't include class — dblack@... 2006/04/20

Hi --

[#7737] Re: [ ruby-Bugs-4151 ] Stack trace doesn't include class — "Timothy J. Wood" <tjw@...> 2006/04/18

[#7742] Re: [ ruby-Bugs-4151 ] Stack trace doesn't include class — Mathieu Bouchard <matju@...> 2006/04/19

On Wed, 19 Apr 2006, Timothy J. Wood wrote:

[#7729] xmlrpc and charset=utf-8 — "Phil Tomson" <rubyfan@...>

I'm needed to interact with an XMLRPC server written using the

10 messages 2006/04/17

[#8011] Re: xmlrpc and charset=utf-8 — Daniel Berger <djberg96@...> 2006/06/18

[#8014] Re: xmlrpc and charset=utf-8 — "Sean E. Russell" <ser@...> 2006/06/19

On Saturday 17 June 2006 23:00, Daniel Berger wrote:

[#8018] Re: xmlrpc and charset=utf-8 — Kazuhiro NISHIYAMA <zn@...> 2006/06/19

>>>>> On Sun, 18 Jun 2006 12:00:19 +0900

[#8019] Re: xmlrpc and charset=utf-8 — Sean Russell <ser@...> 2006/06/19

I first sent this from the wrong email account, so if that post somehow makes

[#8020] Re: xmlrpc and charset=utf-8 — "Dominique Brezinski" <dominique.brezinski@...> 2006/06/19

On 6/19/06, Sean Russell <ser@germane-software.com> wrote:

[#12194] Re: xmlrpc and charset=utf-8 — jesse_c <jesse@...> 2007/09/18

[#12196] Re: xmlrpc and charset=utf-8 — Martin Duerst <duerst@...> 2007/09/18

At 10:02 07/09/18, jesse_c wrote:

[#12257] Re: xmlrpc and charset=utf-8 — "Sean E. Russell" <ser@...> 2007/09/27

On Tuesday 18 September 2007, Martin Duerst wrote:

[#12269] Re: xmlrpc and charset=utf-8 — Jesse Clark <jesse@...> 2007/09/27

[#7732] Re: Welcome to our (ruby-core ML) You are added automatically — paul.ogaz@...

guide

1 message 2006/04/18

[#7738] RDoc patches for GetoptLong — mathew <meta@...>

I added RDoc documentation to GetoptLong. The patches are attached. As

4 messages 2006/04/19

[#7739] Re: RDoc patches for GetoptLong — Eric Hodel <drbrain@...7.net> 2006/04/19

On Apr 18, 2006, at 6:59 PM, mathew wrote:

[#7743] Re: RDoc patches for GetoptLong — mathew <meta@...> 2006/04/20

Eric Hodel wrote:

[#7740] Re: RDoc patches for GetoptLong — Yukihiro Matsumoto <matz@...> 2006/04/19

Hi,

[#7744] Coverity Scan — "Pat Eyler" <rubypate@...>

I don't know if anyone else has signed up for access to the coverity

5 messages 2006/04/20

[#7755] Re: Coverity Scan — Hidetoshi NAGAI <nagai@...> 2006/04/21

From: "Pat Eyler" <rubypate@gmail.com>

[#7757] Re: Coverity Scan — "Pat Eyler" <rubypate@...> 2006/04/24

should I continue to post these then?

[#7763] Re: Coverity Scan — Yukihiro Matsumoto <matz@...> 2006/04/25

Hi,

[#7745] Re: Coverity Scan — "Pat Eyler" <rubypate@...> 2006/04/20

On 4/20/06, Pat Eyler <rubypate@gmail.com> wrote:

[#7746] gcd2 problem in 1.9 snapshot — Joel VanderWerf <vjoel@...>

$ ruby19 -v -r mathn -e 1

2 messages 2006/04/20

[#7753] Re: gcd2 problem in 1.9 snapshot — Yukihiro Matsumoto <matz@...> 2006/04/21

Hi,

[#7756] make check finds 51 errors and 7 failures — noreply@...

Bugs item #4205, was opened at 2006-04-21 16:28

1 message 2006/04/21

[#7758] Another Coverity Defect — "Pat Eyler" <rubypate@...>

this one is in ruby/regcomp.c (there are three more 'deadcode'

1 message 2006/04/24

[#7759] A different look at the coverity report — "Pat Eyler" <rubypate@...>

Checker Function File

1 message 2006/04/24

[#7760] Patch for ri to show subclasses at class documentation — Sven Klemm <sven@...3d2.de>

Hello,

1 message 2006/04/25

[#7761] Re: A different look at the coverity report — ville.mattila@...

2 messages 2006/04/25

[#7762] Re: A different look at the coverity report — "Pat Eyler" <rubypate@...> 2006/04/25

On 4/24/06, ville.mattila@stonesoft.com <ville.mattila@stonesoft.com> wrote:

[#7764] Patch: code-cleanup (const...) — Stefan Huehner <stefan@...>

Hi,

4 messages 2006/04/25

[#7769] Re: Patch: code-cleanup (const...) — Yukihiro Matsumoto <matz@...> 2006/04/26

Hi,

[#7777] Re: Patch: code-cleanup (const...) — Sam Roberts <sroberts@...> 2006/04/26

On Tue, Apr 25, 2006 at 08:20:18PM +0900, Stefan Huehner wrote:

[#7779] Re: Patch: code-cleanup (const...) — Stefan Huehner <stefan@...> 2006/04/26

On Thu, Apr 27, 2006 at 02:50:14AM +0900, Sam Roberts wrote:

[#7765] possible defect in array.c — "Pat Eyler" <rubypate@...>

This one may be a false positive, I'm not sure. If it is, I'll happily mark

5 messages 2006/04/25

[#7766] Re: possible defect in array.c — "Jacob Fugal" <lukfugl@...> 2006/04/25

On 4/25/06, Pat Eyler <rubypate@gmail.com> wrote:

[#7767] Re: possible defect in array.c — "Pat Eyler" <rubypate@...> 2006/04/25

On 4/25/06, Jacob Fugal <lukfugl@gmail.com> wrote:

[#7768] Re: possible defect in array.c — "Dominique Brezinski" <dominique.brezinski@...> 2006/04/25

I find it interesting that the Coverity scan does not detect integer

[#7776] Re: possible defect in array.c — "Dominique Brezinski" <dominique.brezinski@...> 2006/04/26

On 4/25/06, Dominique Brezinski <dominique.brezinski@gmail.com> wrote:

[#7770] Re: possible defect in array.c — "Brown, Warren" <warrenbrown@...>

> rb_range_beg_len (in range.c) does set beg and len.

13 messages 2006/04/26

[#7771] Re: possible defect in array.c — "Pat Eyler" <rubypate@...> 2006/04/26

On 4/26/06, Brown, Warren <warrenbrown@aquire.com> wrote:

[#7772] Re: possible defect in array.c — "Jacob Fugal" <lukfugl@...> 2006/04/26

On 4/26/06, Pat Eyler <rubypate@gmail.com> wrote:

[#7773] Re: possible defect in array.c — "Pat Eyler" <rubypate@...> 2006/04/26

On 4/26/06, Jacob Fugal <lukfugl@gmail.com> wrote:

[#7780] Re: possible defect in array.c — Sam Roberts <sroberts@...> 2006/04/26

On Thu, Apr 27, 2006 at 01:15:24AM +0900, Pat Eyler wrote:

[#7781] Re: possible defect in array.c — "Nobuyoshi Nakada" <nobu@...> 2006/04/27

Hi,

[#7782] Re: possible defect in array.c — Sam Roberts <sroberts@...> 2006/04/27

On Thu, Apr 27, 2006 at 09:41:00AM +0900, Nobuyoshi Nakada wrote:

[#7783] Re: possible defect in array.c — "Nobuyoshi Nakada" <nobu@...> 2006/04/27

Hi,

[#7788] Re: possible defect in array.c — Sam Roberts <sroberts@...> 2006/04/27

Quoting nobu@ruby-lang.org, on Thu, Apr 27, 2006 at 11:55:17AM +0900:

[#7794] Re: possible defect in array.c — Christian Neukirchen <chneukirchen@...> 2006/04/27

Sam Roberts <sroberts@uniserve.com> writes:

[#7784] Re: possible defect in array.c — "Pat Eyler" <rubypate@...> 2006/04/27

On 4/26/06, Nobuyoshi Nakada <nobu@ruby-lang.org> wrote:

[#7774] Re: possible defect in array.c — Stefan Huehner <stefan@...> 2006/04/26

On Thu, Apr 27, 2006 at 01:15:24AM +0900, Pat Eyler wrote:

[#7778] Re: possible defect in array.c — Hugh Sasse <hgs@...> 2006/04/26

On Thu, 27 Apr 2006, Pat Eyler wrote:

[#7775] Another class of problem — "Pat Eyler" <rubypate@...>

(Well, it looks like someone cleaned up a possible defect in the

1 message 2006/04/26

[#7785] possible defect in ext/openssl/ossl_ans1.c (with fix) — "Pat Eyler" <rubypate@...>

768 VALUE klass = *ossl_asn1_info[tag].klass;

1 message 2006/04/27

[#7786] Re: possible defect in ext/openssl/ossl_ans1.c (with fix) — ville.mattila@...

3 messages 2006/04/27

[#7787] Re: possible defect in ext/openssl/ossl_ans1.c (with fix) — "Pat Eyler" <rubypate@...> 2006/04/27

On 4/26/06, ville.mattila@stonesoft.com <ville.mattila@stonesoft.com> wrote:

[#7789] Re: possible defect in ext/openssl/ossl_ans1.c (with fix) — "Jacob Fugal" <lukfugl@...> 2006/04/27

On 4/26/06, ville.mattila@stonesoft.com <ville.mattila@stonesoft.com> wrote:

[#7790] Re: possible defect in ext/openssl/ossl_ans1.c (with fix) — ville.mattila@...

3 messages 2006/04/27

[#7793] Re: possible defect in ext/openssl/ossl_ans1.c (with fix) — Stephen Waits <steve@...> 2006/04/27

[#7798] Re: possible defect in ext/openssl/ossl_ans1.c (with fix) — GOTOU Yuuzou <gotoyuzo@...> 2006/04/28

Hi,

[#7791] use -shared to gcc for shared link Solaris — "Andrew Morrow" <andrew.c.morrow@...>

While trying to build a 64 bit ruby from cvs on Solaris 10 x86 with a

1 message 2006/04/27

[#7792] Another unitialized variable defect — "Pat Eyler" <rubypate@...>

(I hope I'm finally getting the hang of this.)

1 message 2006/04/27

[#7795] Right way to handle memory allocation failures (related to fix for array.c issue)? — "Dominique Brezinski" <dominique.brezinski@...>

To fix the integer wrap in rb_array_fill, there is a simple check that

1 message 2006/04/27

[#7796] Float near Float::MIN — noreply@...

Bugs item #4284, was opened at 2006-04-27 21:14

2 messages 2006/04/27

[#7797] Re: [ ruby-Bugs-4284 ] Float near Float::MIN — Yukihiro Matsumoto <matz@...> 2006/04/28

Hi,

[#7799] Patch: code-cleanup (k&r style) — Stefan Huehner <stefan@...>

Hi,

6 messages 2006/04/28

[#7801] Re: Patch: code-cleanup (k&r style) — Yukihiro Matsumoto <matz@...> 2006/05/01

Hi,

[#7802] Re: Patch: code-cleanup (k&r style) — ts <decoux@...> 2006/05/01

>>>>> "Y" == Yukihiro Matsumoto <matz@ruby-lang.org> writes:

[#7803] Re: Patch: code-cleanup (k&r style) — Yukihiro Matsumoto <matz@...> 2006/05/01

Hi,

[#7804] Re: Patch: code-cleanup (k&r style) — Stefan Huehner <stefan@...> 2006/05/01

On Mon, May 01, 2006 at 08:05:34PM +0900, Yukihiro Matsumoto wrote:

[#7805] Re: Patch: code-cleanup (k&r style) — Yukihiro Matsumoto <matz@...> 2006/05/02

Hi,

[#7800] Net::IMAP#disconnect + SSL hangs — Eric Hodel <drbrain@...7.net>

When calling Net::IMAP#disconnect when using an SSL connection the

1 message 2006/04/28

Re: possible defect in array.c

From: "Dominique Brezinski" <dominique.brezinski@...>

Date: 2006-04-25 18:31:26 UTC

List: ruby-core #7768

I find it interesting that the Coverity scan does not detect integer
overflows. I reported one in this very code some time ago. Here is a
snippet of the code annoted to show the issue:

case 3:
     [snipped]
        len = NIL_P(arg2) ? RARRAY(ary)->len - beg : NUM2LONG(arg2);
/* len is from method argument */
        break;
    }
    rb_ary_modify(ary);
    end = beg + len; /* end is derived from len */
    if (end > RARRAY(ary)->len) { /* when a long len is specified,
this will be true */
        if (end >= RARRAY(ary)->aux.capa) { /* this will be true also */
            REALLOC_N(RARRAY(ary)->ptr, VALUE, end); /* size passed to
realloc() is sizeof(VALUE) * end--WRAP*/
            RARRAY(ary)->aux.capa = end;
        }
[snipped]
   if (block_p) {
[snipped]
   }
   else {
        p = RARRAY(ary)->ptr + beg;
        pend = p + len; /* derived from len, which is now much longer
than memory allocated */
        while (p < pend) {
            *p++ = item; /* HEAP OVERFLOW! */
        }
    }
    return ary;
}

This code triggers the integer wrap in array_fill (the safe level was
just set to show that the issue can be exploited regardless of safe
level restrictions):

#!/usr/bin/env ruby
$SAFE = 4
a = Array.new(100)
a.fill(".", 1, 0x40000001)
a.each_index {|i| a[i] = 'a' }

I think the Coverity scans are a good start, but this demonstrates
that just because their scanner does not find anything (in those
projects now labelled as bug-free by Coverity), it does not mean that
bugs don't exist (obvious point, I know). None the less, pointing out
bugs is always a good thing :) It is good to see people taking the
issues seriously.

Cheers,
Dom

On 4/25/06, Pat Eyler <rubypate@gmail.com> wrote:
> On 4/25/06, Jacob Fugal <lukfugl@gmail.com> wrote:
> > On 4/25/06, Pat Eyler <rubypate@gmail.com> wrote:
> > > This one may be a false positive, I'm not sure.  If it is, I'll happily mark
> > > it that way at the coverity site.
> >
> > This one looks like a false positive to me. Up to the switch on line
> > 2114, [beg] is never touched. In each of the three delineated cases
> > for the switch, [beg] is set. (In case 2, if [rb_range_beg_len
> > succeeds], I *assume* [beg] is set by the function; if it fails, we
> > fall through to case 3 which does set [beg].) The only way [beg] could
> > be unset at line 2133 is if [argc] were less than 1 or greater than 3.
> > That, I hope, is gauranteed by the input to the function (along with
> > the hack on line 2109 for blocks).
>
> rb_range_beg_len (in range.c) does set beg and len.  I'm hoping the
> other edge cases (argc <1 or >3) are covered too.  If anyone else
> wants to speak with a little more authority, I'm all ears.
>
> >
> > Jacob Fugal
> >
> >
>
>

Thread

Prev Next

In This Thread

Prev Next