Re: [Xen-devel] [PATCH 0/6] libxl: config file string handling cleanups

[Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>]

Ian Jackson writes ("[PATCH 0/6] libxl: config file string handling cleanups"):
> These 6 followup patches were developed during a review of the xl
> string handling code, prompted by XSA-137.  They were embargoed until
> today.
> 
> I have reviewed the whole of xl's string handling for other bugs.
> My search terms included:
>      realloc sn?printf str \bstr \bstrcpy \bstrn \bstrcat \bmemcpy
>      \bmemchr \bp\b
> 
> Surprisingly, I found not too much untoward.
> 
> Of these only two are even backport candidates:
> 
>   xl: Do not ignore unparseable PCI BDFs
>   xl: Rewrite trim()

FYI, these were acked by Ian Campbell with his security hat on.  But
they obviously need to be posted publicly.

If there are no objections I will commit them later this week.

Ian.

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel