Dangers of C library

I just read through Ulrich Drepper's Defensive Programming article. He highlights dangers of C library, provides safer alternatives for commonly used idioms and introduces a number of tools for pinpointing problems in code.

These are my rather unstructured notes of things most interesting to me.


Syntax for forward declarations within paramer list and array size annotation for future checks
int addvec(int n; int arr[n], int n)

tools for formatting an arbitrarily long string
aprintf() which allocates the buffer, for constant format string only
FILE *open_memstream(), for an ostringstream -like in-memory file

fast string handling within stack
strdupa() and alloca()

parsing strings of arbitrary size
%as format string with buffer allocated by scanf

parsing simple delimited files with arbitrary length of lines
ssize_t getdelim()
ssize_t getline()

practical examples of using file descriptor variants of regular functions for avoiding race conditions
eg. chown -> fchown

O_NOFOLLOW for avoiding dereferencing symbolic links

mapping a function over a directory tree with ntfw()

create temporary files only with mkstemp() or tmpfile()

unix domain socket authentication
getsockopt(SO_PEERCRED)

proper randomness
  • initstate() from /dev/random
  • random()
_FORTIFY_SOURCE for compiling in runtime memory checks around standard C runtime.

use of __attribute__ __deprecated__ and concept of .gnu.warning -sections within ELF.



good overview of tools

MALLOC_PERTURB
  • forces unitialized memory to contain given garbage
mtrace()
  • output a trace file with malloc and free operations for single threaded programs
mcheck()
dmalloc
  • replaces malloc
electric fence
  • inserts protected pages around allocated memory, over freed memory
valgrind
  • virtual machine for IA-32 only
mudflap
  • gcc4 inserted instrumentation and library for memory checking
catchsegv / libsegfault
  • dump backtrace on crash
_GLIBCXX_DEBUG - templates with assertions

Comments

Post a Comment

Popular posts from this blog

iMovie event library on a network drive, NAS

I was shocked to find that iMovie '09 would not allow storing event libraries on networked disks. The AFP volume would show up, but remain non-functional with a yellow exclamation sign. There are plenty of instructions for hacking around the limitation with clumsy symbolic links. I discovered a much simpler approach, using an undocumented (?) setting built right into iMovie:"Allow Network Volumes". Use at your own risk, try the following command in Terminal defaults write -app iMovie allowNV -bool true
Read more

Proxmox PCIe passthrough on HP gen8 - failed to set iommu for container

Problem Setting up PCIe passthrough from host to a VM was supposed to be easy. However, being an HP server, there was a bit more to it than usual. The VM simply refused to start when configured use Nvidia GPU from the host: vfio error: 0000:04:00.0: failed to setup container for group 21: failed to set iommu for container: Operation not permitted In dmesg there was a bit more background on what was wrong: fio-pci 0000:04:00.1: Device is ineligible for IOMMU domain attach due to platform RMRR requirement.  Contact your platform vendor. Luckily, HP had issued a customer advisory on this. It describes a convoluted method to disable this RMRR per slot basis. It seems to work for me, so I thought I'd write down some notes if I ever run into this again. Basic setup Proxmox has decent instructions for preparing the host for passthrough setup in general, in summary: -  add  intel_iommu=on to   GRUB_CMDLINE_LINUX_DEFAULT  in the file  /etc/default/grub - add vfio modules to  /etc/modules
Read more

Backup and restore observium

Note to self, how to backup and restore an Observium installation such as Turn Key Linux . backup mysqldump --all--databases >sql.txt tar zcvf rrd.tgz /opt/observium/rrd restore log in at https://observium:12322/ as adminer import the sql.txt tar zxvf  rrd.tgz -C /
Read more