Closed Bug 278306 Opened 20 years ago Closed 20 years ago

Possible unexpected truncation of path in GRE_GetCurrentProcessDirectory

Categories

(Core :: XPCOM, defect)

Product:
Core
Component:
XPCOM
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: Callek, Assigned: Callek)

References

(
URL
)

Details

Attachments

(2 files)

fix
1.56 KB, patch
darin.moz
: review+
darin.moz
: superreview+
Details | Diff | Splinter Review
Address Doug's Review comment
1.04 KB, patch
dougt
: review+
Details | Diff | Splinter Review
DWORD GetModuleFileName(HMODULE hModule, LPTSTR lpFilename, DWORD nSize); Return Values If the function succeeds, the return value is the length of the string copied to the buffer, in TCHARs. If the buffer is too small to hold the module name, the string is truncated to nSize, and the function returns nSize. If the function fails, the return value is zero. To get extended error information, call GetLastError. If the return value is > MAXPATHLEN here we should return PR_FALSE, better than what we have now. Patch Coming...
Attached patch fixSplinter Review
This should fix it.
Assignee: dougt → 116057
Status: NEW → ASSIGNED
Attachment #171202 - Flags: superreview?(darin)
Attachment #171202 - Flags: review?(darin)
Comment on attachment 171202 [details] [diff] [review] fix The documentation: http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dllproc/base/g etmodulefilename.asp Does not talk about a return value greater than MAXPATHLEN. Why would be test for it? I would claim that GetModuleFileName would be broken if the return value is greater than nSize. Where do you see this happening?
Attachment #171202 - Flags: superreview?(darin)
Attachment #171202 - Flags: review?(darin)
Attachment #171202 - Flags: review-
Comment on attachment 171202 [details] [diff] [review] fix >Index: xpcom/glue/standalone/nsGREDirServiceProvider.cpp >+ DWORD bufLength = ::GetModuleFileName(0, buffer, MAXPATHLEN); >+ if (bufLength == 0 || bufLength >= MAXPATHLEN) >+ return PR_FALSE; >+ // chop of the executable name by finding the rightmost backslash >+ char* lastSlash = PL_strrchr(buffer, '\\'); BTW, this should probably use _mbsrchr instead of PL_strrchr though in practice I don't know of any character encodings where the current code would be a problem (but in nsLocalFileWin.cpp we use _mbsrchr when searching for '\\' so maybe there is a reason). r+sr=darin with that change.
Attachment #171202 - Flags: superreview+
Attachment #171202 - Flags: review-
Attachment #171202 - Flags: review+
fixed-on-trunk
Status: ASSIGNED → RESOLVED
Closed: 20 years ago
Resolution: --- → FIXED
> Does not talk about a return value greater than MAXPATHLEN. Why would be test > for it? I would claim that GetModuleFileName would be broken if the return > value is greater than nSize. Where do you see this happening? MSDN says: "If the buffer is too small to hold the module name, the string is truncated to nSize, and the function returns nSize." In this case MAXPATHLEN is that nSize. Given this documentation, it would have probably been fine to compare using == instead of >=. Sorry for not responding to your comment before checking in. I didn't see it when I first visited the bug. Comments posted from the edit patch feature don't handle conflict resolution IIRC :-(
This fixes the >= to ==, for some reason I thought I read something like "returns the size needed for the buffer" or some such, which of course would be nicer since other app's could then allocate what is needed, O well. Thanks
Attachment #171225 - Flags: superreview?(dougt)
Attachment #171225 - Flags: review?(dougt)
Comment on attachment 171225 [details] [diff] [review] Address Doug's Review comment yeah, that works.
Attachment #171225 - Flags: review?(dougt) → review+
Attachment #171225 - Flags: superreview?(dougt)
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: