Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

APIs missing argument validation #546

Closed
dmknutsen opened this issue Mar 10, 2020 · 0 comments · Fixed by #1140 or #1196
Closed

APIs missing argument validation #546

dmknutsen opened this issue Mar 10, 2020 · 0 comments · Fixed by #1140 or #1196
Assignees
@zanzaben
Labels
enhancement
Milestone
Caelum

Comments

@dmknutsen
Copy link
Contributor

Describe the bug
The following APIs are missing argument validation:

cfe_sb_api.c:CFE_SB_SubscribeFull - Quality is not checked…consider checking that it is 0 or 1
cfe_es_api.c:CFE_ES_DeleteApp - Can get a segmentation fault if user tries to delete an APP greater than CFE_PLATFORM_ES_MAX_APPLICATIONS
cfe_tbl_api.c:CFE_TBL_GetAddresses - Can result in Segmentation fault if NumTables grows larger than max number of tables.
cfe_tbl_api.c:CFE_TBL_ReleaseAddresses - Should check to make sure NumTables is less than CFE_PLATFORM_TBL_MAX_NUM_TABLES
cfe_es_perf.c:CFE_ES_PerfLogAdd - Should check if EntryExit is either a 0 or 1
cfe_es_api.c:CFE_ES_ReloadApp - Can Result in Segmentation fault if APID is invalid
cfe_es_api.c:CFE_ES_CreateChildTask - Input Argument 'Flags' is not validated…also it does not appear to be used anywhere, consider removing
cfe_es_api.c:CFE_ES_GetAppName - Consider comparing BufferLength with OS_MAX_API_NAME prior to use.
cfe_es_api.c:CFE_ES_RegisterCDS - Consider checking if block size is less than CFE_PLATFORM_ES_MAX_BLOCK_SIZE
cfe_fs_api.c:CFE_FS_InitHeader - SubType not checked
cfe_sb_api.c:CFE_SB_ZeroCopyGetPtr - Is there a maximum message size? Consider verifying MsgSize prior to use.
cfe_sb_util.c:CFE_SB_SetUserDataLength - Consider verifying Length of user data (if there exists a limit) and/or TotalMsgSize
cfe_sb_api.c:CFE_SB_SubscribeLocal - MsgLim is not checked…if a max limit does exist, should add argument validation

Expected behavior
All input arguments are validated prior to use.

System observed on:
NA - code review/audit

Reporter Info
Dan Knutsen
NASA Goddard
@skliper skliper mentioned this issue Mar 16, 2020
Closed
@dmknutsen dmknutsen self-assigned this Mar 19, 2020
dmknutsen added a commit to dmknutsen/cFE that referenced this issue Mar 24, 2020
@dmknutsen
Fixes nasa#546, adds argument validation
cebe2a4
@skliper skliper mentioned this issue Apr 8, 2020
Closed
@skliper skliper added this to the 7.0.0 milestone Jan 11, 2021
@skliper skliper assigned zanzaben and unassigned dmknutsen Jan 22, 2021
zanzaben added a commit to zanzaben/cFE that referenced this issue Jan 29, 2021
@zanzaben
Fix nasa#546, add argument validation
bd84409
@zanzaben zanzaben mentioned this issue Jan 29, 2021
Merged
zanzaben added a commit to zanzaben/cFE that referenced this issue Feb 2, 2021
@zanzaben
Fix nasa#546, add argument validation
be35514
zanzaben added a commit to zanzaben/cFE that referenced this issue Feb 16, 2021
@zanzaben
Fix nasa#546, add argument validation
0164dc5
zanzaben added a commit to zanzaben/cFE that referenced this issue Feb 16, 2021
@zanzaben
Fix nasa#546, add argument validation
b8a6409
zanzaben added a commit to zanzaben/cFE that referenced this issue Feb 16, 2021
@zanzaben
Fix nasa#546, add argument validation
d2b26a3
zanzaben added a commit to zanzaben/cFE that referenced this issue Feb 18, 2021
@zanzaben
Fix nasa#546, add argument validation
5490307
zanzaben added a commit to zanzaben/cFE that referenced this issue Feb 18, 2021
@zanzaben
Fix nasa#546, add argument validation
c85ff3b
zanzaben added a commit to zanzaben/cFE that referenced this issue Feb 24, 2021
@zanzaben
Fix nasa#546, add argument validation
5b7be60
zanzaben added a commit to zanzaben/cFE that referenced this issue Feb 25, 2021
@zanzaben
Fix nasa#546, add argument validation
1b9b242
zanzaben added a commit to zanzaben/cFE that referenced this issue Mar 2, 2021
@zanzaben
Fix nasa#546, add argument validation
260570d
astrogeco added a commit that referenced this issue Mar 2, 2021
@astrogeco
Merge pull request #1140 from zanzaben/fix546_API_argument_validation
b50ae63 
Fix #546 #547, api argument validation
@astrogeco astrogeco mentioned this issue Mar 2, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@zanzaben zanzaben

Labels
enhancement
Projects
None yet
Milestone
Caelum
4 participants
@zanzaben @skliper @dmknutsen @astrogeco