Re: openpty: limits for name

To: tech-userlevel%NetBSD.org@localhost
Subject: Re: openpty: limits for name
From: David Holland <dholland-tech%netbsd.org@localhost>
Date: Sun, 22 Jul 2012 23:06:08 +0000

On Thu, Jul 12, 2012 at 12:13:18PM +0200, Thomas Klausner wrote:
 > A Linux man page I found for openpty says:
 > 
 > BUGS
 >        Nobody knows how much space should be reserved for name. So,
 >        calling openpty() or forkpty() with non-NULL name may not be secure.
 > 
 > Our man page is silent on that.
 > 
 > The code in libutil/pty.c just does:
 >  if (name)
 >     (void)strcpy(name, linep);
 > 
 > I wonder if we (can and) want to promise a limit in the man page, or
 > just add a comment like the one in the Linux man page.

Well, "nobody knows how much space to use" is a long form of "do not
use this interface", so unless we want to join the Linux world in
deprecating these calls in favor of open-coding the logic and calling
grantpt(), it should be defined and documented.

it is probably also worth getting the change into all the BSDs.

-- 
David A. Holland
dholland%netbsd.org@localhost

References:
- openpty: limits for name
  - From: Thomas Klausner

Prev by Date: Re: db(3) removal and lastlogx
Next by Date: Re: disklabel problems on 3TB disc
Previous by Thread: Re: openpty: limits for name
Next by Thread: fssconfig -c not working
Indexes:

Home | Main Index | Thread Index | Old Index