Bug#749812: openmama: Wrong number of arguments to mamaConnection_allocate to cause undefined behaviour


Daniel Pocock
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256



Hi Michael,

Thanks for this bug report - as it appears to be an upstream issue,
I'm putting it on the OpenMAMA mailing list for discussion

Regards,

Daniel



On 30/05/14 00:02, Michael Tautschnig wrote:
Package: openmama Version: 2.2.2.1-10 Usertags: goto-cc

During an analysis of all Debian packages using our research
compiler tool-chain (using tools from the cbmc package) the
following error was found:

When invoking mamaConnection_allocate here

http://sources.debian.net/src/openmama/2.2.2.1-10/mama/jni/src/c/mamaconnectionjni.c?hl=139#L139

only 10 arguments are passed, even though 11 are required. It
seems the "bytesSent" parameter is missing, which also causes the
remaining ones (userName, appName, handle) to take wrong/undefined
values.

Best, Michael
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Icedove - http://www.enigmail.net/
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=00uq
-----END PGP SIGNATURE-----


Damian Maguire <DMaguire@...>
 

Cheers Damiel, Michael,

There does appear to be an issue there, and it hasn't been fixed in next.
I've raised a bugzilla ticket
(http://bugs.openmama.org/show_bug.cgi?id=104) which can be used to track
the issue, and we'll get a fix sorted.

Cheers,

Damian



On 5/30/14 11:40 AM, "Daniel Pocock" <daniel@pocock.com.au> wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256



Hi Michael,

Thanks for this bug report - as it appears to be an upstream issue,
I'm putting it on the OpenMAMA mailing list for discussion

Regards,

Daniel



On 30/05/14 00:02, Michael Tautschnig wrote:
Package: openmama Version: 2.2.2.1-10 Usertags: goto-cc

During an analysis of all Debian packages using our research
compiler tool-chain (using tools from the cbmc package) the
following error was found:

When invoking mamaConnection_allocate here


http://sources.debian.net/src/openmama/2.2.2.1-10/mama/jni/src/c/mamaconn
ectionjni.c?hl=139#L139

only 10 arguments are passed, even though 11 are required. It
seems the "bytesSent" parameter is missing, which also causes the
remaining ones (userName, appName, handle) to take wrong/undefined
values.

Best, Michael
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Icedove - http://www.enigmail.net/
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=00uq
-----END PGP SIGNATURE-----
_______________________________________________
Openmama-dev mailing list
Openmama-dev@lists.openmama.org
https://lists.openmama.org/mailman/listinfo/openmama-dev
________________________________________________________

This message may contain confidential information and is intended for specific recipients unless explicitly noted otherwise. If you have reason to believe you are not an intended recipient of this message, please delete it and notify the sender. This message may not represent the opinion of IntercontinentalExchange Group, Inc. (ICE), NYSE Euronext or any of their subsidiaries or affiliates, and does not constitute a contract or guarantee. Unencrypted electronic mail is not secure and the recipient of this message is expected to provide safeguards from viruses and pursue alternate means of communication where privacy or a binding message is desired.
________________________________________________________