Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Fix stack buffer overflow in String::getBytes() test#193

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.

Already on GitHub?Sign in to your account

Merged
aentinger merged 2 commits intoarduino:masterfromtttapa:patch-2
Aug 1, 2023

Conversation

tttapa
Copy link
Contributor

  • Fixes a stack buffer overflow in the[String-getBytes-02] test.
  • Fixes the concatenation of theCMAKE_{C,CXX}_FLAGS variable intest/CMakeLists.txt (string concatenation instead of list concatenation).

This was caught by the GCC sanitizers. It might be a good idea to run the tests with-fsanitize=address,undefined in the CI (in addition to Valgrind) to catch these kinds of bugs early.

@CLAassistant
Copy link

CLAassistant commentedJul 31, 2023
edited
Loading

CLA assistant check
All committers have signed the CLA.

@codecov-commenter
Copy link

Codecov Report

Patch and project coverage have no change.

Comparison is base(5b9faf6) 95.77% compared to head(363c2c4) 95.77%.

Additional details and impacted files
@@           Coverage Diff           @@##           master     #193   +/-   ##=======================================  Coverage   95.77%   95.77%           =======================================  Files          13       13             Lines         970      970           =======================================  Hits          929      929             Misses         41       41

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report?Share it here.

@per1234per1234 added the bug labelJul 31, 2023
Copy link
Contributor

@aentingeraentinger left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others.Learn more.

LGTM 👍 Thanks for catching this@tttapa

@aentingeraentinger merged commit84b98c7 intoarduino:masterAug 1, 2023
@aentinger
Copy link
Contributor

This was caught by the GCC sanitizers. It might be a good idea to run the tests with -fsanitize=address,undefined in the CI (in addition to Valgrind) to catch these kinds of bugs early.

@tttapa care to send another PR adding-fsanitize=address,undefined toCMakelists.txt? (I could do it, but for bragging rights ;) )

@tttapa
Copy link
ContributorAuthor

I appreciate the offer of bragging rights :) but I'm afraid I don't have the time right now.
Since you can't have the sanitizers enabled when running under valgrind, this would be a nontrivial change tohttps://github.com/arduino/cpp-test-action (you'd need one build with sanitizers, and one without for valgrind).

@aentinger
Copy link
Contributor

Hi@tttapa ☕ 👋

I've created a feature request forarduino/cpp-test-action. Once the action incorporates that feature we could just use the action twice in ourunit-test.yml, to once run with valgrind and once without it (but with sanitizing enabled). What do you think?

Sign up for freeto join this conversation on GitHub. Already have an account?Sign in to comment
Reviewers

@aentingeraentingeraentinger approved these changes

Assignees
No one assigned
Labels
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

5 participants
@tttapa@CLAassistant@codecov-commenter@aentinger@per1234
[8]ページ先頭
©2009-2025 Movatter.jp