[tickets] [opensaf:tickets] #1789 log: not verify the logBufSize caused the node malfunctioned

Thu, 12 May 2016 01:56:33 -0700 

- **status**: review --> fixed
- **assigned_to**: Vu Minh Nguyen -->  nobody 
- **Comment**:

changeset:   7617:a6f87948dab5
tag:         tip
parent:      7614:7eda4d081769
user:        Vu Minh Nguyen <[email protected]>
date:        Thu May 12 10:49:03 2016 +0200
summary:     log: verify logBufSize to avoid node malfunctioned [#1789]

rev: a6f87948dab5152816c2d561fbb1d749bbb8659b

changeset:   7616:48e30c0d5dfd
branch:      opensaf-5.0.x
parent:      7613:0bd030fb3b90
user:        Vu Minh Nguyen <[email protected]>
date:        Thu May 12 10:49:03 2016 +0200
summary:     log: verify logBufSize to avoid node malfunctioned [#1789]

rev: 48e30c0d5dfd66aeb0a5723a8a22e2b1a196918d

changeset:   7615:5ca256b58104
branch:      opensaf-4.7.x
parent:      7612:6cd50099da92
user:        Vu Minh Nguyen <[email protected]>
date:        Thu May 12 10:47:16 2016 +0200
summary:     log: verify logBufSize to avoid node malfunctioned [#1789]

rev: 5ca256b5810451e9d812b31bee0be83c1c56cb0a



---

** [tickets:#1789] log: not verify the logBufSize caused the node 
malfunctioned**

**Status:** fixed
**Milestone:** 4.7.2
**Created:** Thu Apr 28, 2016 11:06 AM UTC by Vu Minh Nguyen
**Last Updated:** Wed May 04, 2016 06:53 PM UTC
**Owner:** nobody


Normally, the log clients pass `logBufSize` value which is calculated based on 
the data in `logBuf` to `safLogWriteLogAsync()` LOG API. 

But when accidentally passing an invalid value of `logBufSize` to 
`saLogWriteLogAsync()` such as a very large number which is caused by not using 
`strlen()` on `logBuf`, it will cause a lot of troubles:
E.g:
1) The safLog will be flooded by zero and has very big size (e.g 4GB)
2) Eat lots of RAM
3) Consume much CPU
4) Other things


---

Sent from sourceforge.net because [email protected] is 
subscribed to https://sourceforge.net/p/opensaf/tickets/

To unsubscribe from further messages, a project admin can change settings at 
https://sourceforge.net/p/opensaf/admin/tickets/options.  Or, if this is a 
mailing list, you can unsubscribe from the mailing list.
------------------------------------------------------------------------------
Mobile security can be enabling, not merely restricting. Employees who
bring their own devices (BYOD) to work are irked by the imposition of MDM
restrictions. Mobile Device Manager Plus allows you to control only the
apps on BYO-devices by containerizing them, leaving personal data untouched!
https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
_______________________________________________
Opensaf-tickets mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/opensaf-tickets

Reply via email to