Subject: bin/23395: veriexecctl uses arbitrary limit for lengths of paths
To: None <>
From: Christian Biere <>
List: netbsd-bugs
Date: 11/09/2003 03:53:27
>Number:         23395
>Category:       bin
>Synopsis:       veriexecctl uses arbitrary limit for lengths of paths
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    bin-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Sun Nov 09 02:54:00 UTC 2003
>Originator:     Christian Biere
>Release:        NetBSD 1.6ZD

veriexecctl cuts the path element in signature files down to 254 characters.
This is achieved by using 255 as third parameter for strncpy(). Fortunately,
the destination variable is static and therefore initialised to all-zeros.
However, the destination variable `params.file' is MAXPATHLEN characters
large and this limit should be used by veriexecctl, too.

Also the format description for signature files is wrong in veriexecctl(8):
--- veriexecctl.8       2003/01/20 11:04:09     1.1
+++ veriexecctl.8       2003/11/09 02:17:28
@@ -55,7 +55,9 @@
 .Ar fingerprints
 file contains lines of fields (separated by one or more whitespace
 characters) of the form:
-.Dl path       fingerprint     type    options
+.Dl path       type    fingerprint     options
 Where path is the full path to the executable and fingerprint is a
 hexadecimal representation of the fingerprint for the executable.
 Type is the type of fingerprint used, currently this may be either