lib/47055: libc diagassert issues

To: lib-bug-people%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost
Subject: lib/47055: libc diagassert issues
From: dholland%NetBSD.org@localhost
Date: Wed, 10 Oct 2012 19:45:00 +0000 (UTC)

>Number:         47055
>Category:       lib
>Synopsis:       libc diagassert issues
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    lib-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Wed Oct 10 19:45:00 +0000 2012
>Originator:     David A. Holland
>Release:        NetBSD 6.99.12 (20121010)
>Organization:
>Environment:
n/a
>Description:

There are two problems with libc diagassert:

(1) it calls syslog() blindly, so if an assertion happens in a program
that hasn't called openlog(), it ends up using uninitialized state in
syslog.c. The observable effect of this seems to be to issue syslog
messages with no hostname field; however, it could be (or become,
without much notice) a good deal worse.

(2) it isn't thread-safe. It frob a global variable (diagassert_flags)
without locking. It also should probably be using syslog_r() rather
than syslog().

>How-To-Repeat:

Build kde4, look at the resulting syslog spam. Then review the code.

>Fix:

Probably needs discussion.

Follow-Ups:
- re: lib/47055: libc diagassert issues
  - From: matthew green
- Re: lib/47055: libc diagassert issues
  - From: Christos Zoulas

Prev by Date: Re: toolchain/47051: gcc-4.5.4 breaks opencv on amd64
Next by Date: NetBSD Nightly Trouble Ticket Report
Previous by Thread: PR/47051 CVS commit: pkgsrc/graphics/opencv
Next by Thread: Re: lib/47055: libc diagassert issues
Indexes:

Home | Main Index | Thread Index | Old Index