cFE icon indicating copy to clipboard operation
cFE copied to clipboard
verified publisher icon nasa

Address Sanitizer flags a test in fs_UT.c as having a READ buffer overflow

Open myc-yang opened this issue 9 months ago • 0 comments

I enabled the address sanitizer and ran the coverage-fs-ALL test when it flagged a READ buffer overflow at this line here:

https://github.com/nasa/cFE/blob/main/modules/fs/ut-coverage/fs_UT.c#L341

UtAssert_INT32_EQ(CFE_FS_ParseInputFileNameEx(OutBuffer, "/path/", sizeof(OutBuffer), 10, NULL, TEST_DEFAULT_PATH,
                                              TEST_DEFAULT_EXTENSION),

I believe the issue is that while the input buffer ("/path/") is only 7 (including the null-terminator), the input buffer length is set to 10.

myc-yang avatar May 06 '25 16:05 myc-yang