[Bugfix] Fix #425 #430
Merged
[Bugfix] Fix #425 #430
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
hyschive
approved these changes
Feb 7, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Solve #425.
Thank you, @salmanhiro and @technic960183, for identifying this issue. Thank you, @vivi235711 for your help.
Reproduce the issue with the error message
gamerwith AddressSanitizer (ASan) flagsgamerError message
==58858==ERROR: AddressSanitizer: global-buffer-overflow on address 0x00010259625c at pc 0x00010b4ef33d bp 0x0003089dd110 sp 0x0003089dc8c0 WRITE of size 512 at 0x00010259625c thread T0 #0 0x00010b4ef33c in strncpy+0x4cc (libclang_rt.asan_osx_dynamic.dylib:x86_64+0x4e33c) #1 0x0001021b7ca7 in ReadPara_t::Read(char const*) ReadPara.h:290 #2 0x0001021affcf in Init_Load_Parameter() Init_Load_Parameter.cpp:626 #3 0x0001021a8708 in Init_GAMER(int*, char***) Init_GAMER.cpp:38 #4 0x0001020802e8 in main Main.cpp:614 #5 0x00020283e2cc () 0x00010259625c is located 0 bytes after global variable 'OUTPUT_DIR' defined in 'Main/Main.cpp' (0x0001025960c0) of size 412 SUMMARY: AddressSanitizer: global-buffer-overflow ReadPara.h:290 in ReadPara_t::Read(char const*) Shadow bytes around the buggy address: 0x000102595f80: 00 f9 f9 f9 00 f9 f9 f9 00 f9 f9 f9 00 f9 f9 f9 0x000102596000: 00 f9 f9 f9 00 f9 f9 f9 04 f9 f9 f9 00 f9 f9 f9 0x000102596080: 00 f9 f9 f9 00 f9 f9 f9 00 00 00 00 00 00 00 00 0x000102596100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x000102596180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 =>0x000102596200: 00 00 00 00 00 00 00 00 00 00 00[04]f9 f9 f9 f9 0x000102596280: f9 f9 f9 f9 f9 f9 f9 f9 00 f9 f9 f9 00 f9 f9 f9 0x000102596300: 00 f9 f9 f9 00 f9 f9 f9 00 f9 f9 f9 00 f9 f9 f9 0x000102596380: 04 f9 f9 f9 04 f9 f9 f9 04 f9 f9 f9 04 f9 f9 f9 0x000102596400: 04 f9 f9 f9 04 f9 f9 f9 00 00 00 f9 f9 f9 f9 f9 0x000102596480: 04 f9 f9 f9 04 f9 f9 f9 04 f9 f9 f9 00 00 00 00 Shadow byte legend (one shadow byte represents 8 application bytes): Addressable: 00 Partially addressable: 01 02 03 04 05 06 07 Heap left redzone: fa Freed heap region: fd Stack left redzone: f1 Stack mid redzone: f2 Stack right redzone: f3 Stack after return: f5 Stack use after scope: f8 Global redzone: f9 Global init order: f6 Poisoned by user: f7 Container overflow: fc Array cookie: ac Intra object redzone: bb ASan internal: fe Left alloca redzone: ca Right alloca redzone: cb ==58858==ABORTING zsh: abort ./gamerHow to fix
OUTPUT_DIRasMAX_STRINGsprintf()withOUTPUT_DIR, I append the destination string length to2*MAX_STRING.