1.9.6大家都能正常编译过去吗？ #947

liujian-930212 · 2024-04-12T03:58:53Z

proxy_proto_insert函数中，有char ppv1buf[108], tbuf1[64], tbuf2[64];三个变量。然后下面有语句sprintf(ppv1buf, "PROXY TCP6 %s %s %d %d\r\n", tbuf1, tbuf2, ntohs(ppinfo->addr.ip6.src_port), ntohs(ppinfo->addr.ip6.dst_port));编译器会直接报出有溢出风险。由于默认有-Werror选项，会直接导致编译失败。

暂时我把ppv1buf扩大到256个字节，可以编译通过。问下这个变量为啥要定在108个字节？是不是该用snprintf或者扩大他的容量？

ywc689 · 2024-04-12T05:39:13Z

这个地方缺失有漏洞，我们后面修复下。
ppv1buf 的长度设置为108，是因为 proxy protocol v1 的数据长度最大是107字节。

…w warning with gcc version 8.0+ Signed-off-by: ywc689 <[email protected]>

ywc689 self-assigned this Apr 12, 2024

ywc689 added the issue/to-solve issues await answers tobe solved label Apr 12, 2024

ywc689 added a commit to ywc689/dpvs that referenced this issue Apr 19, 2024

ipvs: fix issue iqiyi#947, a compiling error caused by string overflo…

efc101b

…w warning with gcc version 8.0+ Signed-off-by: ywc689 <[email protected]>

ywc689 mentioned this issue Apr 24, 2024

rockylinux 8 编译 1.9.6 失败了 #952

Closed

ywc689 added issue/solved the issue is solved, and would be closed later and removed issue/to-solve issues await answers tobe solved labels May 22, 2024

ywc689 mentioned this issue Jun 3, 2024

ip_vs_proxy_proto.c 编译失败 #964

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

1.9.6大家都能正常编译过去吗？ #947

1.9.6大家都能正常编译过去吗？ #947

liujian-930212 commented Apr 12, 2024

ywc689 commented Apr 12, 2024

1.9.6大家都能正常编译过去吗？ #947

1.9.6大家都能正常编译过去吗？ #947

Comments

liujian-930212 commented Apr 12, 2024

ywc689 commented Apr 12, 2024