summaryrefslogtreecommitdiff
path: root/sysklogd/logger.c
AgeCommit message (Collapse)Author
2004-08-26Tito writes:Eric Andersen
Hi, I've spent the half night staring at the devilish my_getpwuid and my_getgrgid functions trying to find out a way to avoid actual and future potential buffer overflow problems without breaking existing code. Finally I've found a not intrusive way to do this that surely doesn't break existing code and fixes a couple of problems too. The attached patch: 1) changes the behaviour of my_getpwuid and my_getgrgid to avoid potetntial buffer overflows 2) fixes all occurences of this function calls in tar.c , id.c , ls.c, whoami.c, logger.c, libbb.h. 3) The behaviour of tar, ls and logger is unchanged. 4) The behavior of ps with somewhat longer usernames messing up output is fixed. 5) The only bigger change was the increasing of size of the buffers in id.c to avoid false negatives (unknown user: xxxxxx) with usernames longer than 8 chars. The value i used ( 32 chars ) was taken from the tar header ( see gname and uname). Maybe this buffers can be reduced a bit ( to 16 or whatever ), this is up to you. 6) The increase of size of the binary is not so dramatic: size busybox text data bss dec hex filename 239568 2300 36816 278684 4409c busybox size busybox_fixed text data bss dec hex filename 239616 2300 36816 278732 440cc busybox 7) The behaviour of whoami changed: actually it prints out an username cut down to the size of the buffer. This could be fixed by increasing the size of the buffer as in id.c or avoid the use of my_getpwuid and use getpwuid directly instead. Maybe this colud be also remain unchanged...... Please apply if you think it is ok to do so. The diff applies on today's cvs tarball (2004-08-25). Thanks in advance, Ciao, Tito
2004-03-15Remove trailing whitespace. Update copyright to include 2004.Eric Andersen
2003-07-14Update a bunch of docs. Run a script to update my email addr.Eric Andersen
2003-03-19Major coreutils update.Manuel Novoa III
2002-11-10last_patch57 from Vladimir N. OleynikGlenn L McGrath
2002-09-30Vodz' last_patch57:Eric Andersen
Hi, Erik. my_getpw(uid/gid) and applets used it have problem: if username for uid not found, applets can`t detect it (but code pessent). Also "%8ld " format is bad: spaces not required (applets have self format or spec format (tar applet) and overflow for "id" applet...) This problem also pressent in stable version. Patch for unstable in attach. --w vodz
2001-10-24Major rework of the directory structure and the entire build system.Eric Andersen
-Erik
2001-07-22Some patches to make dietlibc work...Eric Andersen
2001-07-19Some adjustments, mostly from David McCullough <davidm@lineo.com> toEric Andersen
make busybox be more uClinux friendly. I also adjusted Config.h for uClinux so it will automagically disable apps the arn't going to work without fork() and such. -Erik
2001-03-12Applied patch from Gennady Feldman to split up syslogd.c into syslogd andMark Whitley
klogd (as it should be).
2001-02-20It turns out that DODMALLOC was broken when I reorganized busybox.hEric Andersen
header file usage before the 0.49 release. To fix it, I had to move the '#include "busybox.h"' to the end of the list of #include files. -Erik
2001-02-14This patch, put together by Manuel Novoa III, is a merge of workEric Andersen
done by Evin Robertson (bug#1105) and work from Manuel to make usage messages occupy less space and simplify how usage messages are displayed.
2001-01-31Removed trailing \n from error_msg{,_and_die} messages.Matt Kraai
2001-01-27Fix up copyright msgs. Bump version to 0.49 in preparation for0_49Eric Andersen
a release. Update the website with release details. -Erik
2001-01-27Fix header file usage -- there were many unnecessary header files included inEric Andersen
busybox.h which slowed compiles. I left only what was needed and then fixed up all the apps to include their own header files. I also fixed naming for pwd.h and grp.h functions. Tested to compile and run with libc5, glibc, and uClibc. -Erik
2001-01-03Logger forgot to NULL terminate strings from stdin.Eric Andersen
2001-01-02Log stdin when no message given and use getopt.Matt Kraai
2000-12-11Patch from larry doolittle to make sure we don't reallocEric Andersen
a pointer that was not yet malloced mem.
2000-12-09Some little cleanups from Larry DoolittleEric Andersen
2000-12-08Patch from Matt Kraai to make logger log all arguments.Eric Andersen
2000-12-07Changed names of functions in utility.c and all affected files, to makeMark Whitley
compliant with the style guide. Everybody rebuild your tags file!
2000-12-07Fix by Tim Robbins <fyre@box3n.gumbynet.org> to prevent bad formatMatt Kraai
strings from being passed to syslog(3).
2000-11-14Remove the BSD advertising clause, and replace it with a link to howEric Andersen
the advertising clause has been retroactivly declared null and void.
2000-10-25Clean up error handling and uses of TRUE/FALSE.Matt Kraai
2000-09-25Renamed "internal.h" to the more sensible "busybox.h".Eric Andersen
-Erik
2000-08-10Some #include updates.Eric Andersen
-Erik
2000-07-16Extract usage information into a separate file.Matt Kraai
2000-07-14More fixes for "signed vs. unsigned" warnings.Pavel Roskin
2000-07-14Use errorMsg rather than fprintf.Matt Kraai
2000-06-19Updates to a number of apps to remove warnings/compile errors under libc5.Eric Andersen
Tested under both libc5 and libc6 and all seems well with these fixes. -Erik
2000-05-12Lots of updates. Finished implementing BB_FEATURE_TRIVIAL_HELPErik Andersen
which lets you compile out most of the "--help" output, saving up to 17k. Renamed mnc to nc. -Erik
2000-04-13Upates to include copyright 2000 to everythingErik Andersen
-Erik
2000-02-08Some formatting updates (ran the code through indent)Erik Andersen
-Erik
2000-01-29Clear up some ambiguity with old style assignments.Erik Andersen
-Erik
2000-01-23Some busybox updates. You no longer _have_ to put a "-" in front of tarErik Andersen
options, logger is better behaved and has a "-t" option now. init now supports the kernel chroot patch, so you can chroot to a new device and umount the old root. -Erik
2000-01-09Fix a logger bug.Erik Andersen
-Erik
2000-01-07Trivial type fix.Erik Andersen
-Erik
1999-12-16Fix bugs in logger and syslogd. Add fbset.Erik Andersen
-Erik
1999-11-25StufEric Andersen
1999-11-25StufEric Andersen