[asterisk-dev] [Code Review] Fix r374905 misuse of strdupa
wdoekes
reviewboard at asterisk.org
Fri Oct 12 15:40:19 CDT 2012
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviewboard.asterisk.org/r/2162/
-----------------------------------------------------------
(Updated Oct. 12, 2012, 3:40 p.m.)
Review request for Asterisk Developers and Mark Michelson.
Changes
-------
Removed accidental double alloc.
Summary
-------
I was a bit quick on the ship-it there ;)
Those strdupa's are far from safe from direct user input.
Here's a fix, which happens to slightly faster too.
Diffs (updated)
-----
/branches/1.8/channels/chan_sip.c 374930
Diff: https://reviewboard.asterisk.org/r/2162/diff
Testing
-------
Got asterisk to crash easily before patch. No crash after. Mark's test from r2123 still completes with 0 errors.
Thanks,
wdoekes
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.digium.com/pipermail/asterisk-dev/attachments/20121012/753935d7/attachment.htm>
More information about the asterisk-dev
mailing list