c - Using fseek and ftell to determine the size of a file has a vulnerability? -

-

i've read posts show how use fseek , ftell determine size of file. 

file *fp; long file_size; char *buffer;  fp = fopen("foo.bin", "r"); if (null == fp) {  /* handle error */ }  if (fseek(fp, 0 , seek_end) != 0) {   /* handle error */ }  file_size = ftell(fp); buffer = (char*)malloc(file_size); if (null == buffer){   /* handle error */ }

i use technique ran link describes potential vulnerability.

the link recommends using fstat instead. can comment on this?

the link 1 of many nonsensical pieces of c coding advice cert. justification based on liberties c standard allows implementation take, not allowed posix , irrelevant in cases have fstat alternative.

posix requires:

  1. that "b" modifier fopen have no effect, i.e. text , binary mode behave identically. means concern invoking ub on text files nonsense.

  2. that files have byte-resolution size set write operations , truncate operations. means concern random numbers of null bytes @ end of file nonsense.

sadly nonsense publish, it's hard know cert publications take seriously. shame, because lots of them serious.


Comments

Post a Comment

Popular posts from this blog

c# - how to write client side events functions for the combobox items -

-
<dx:aspxcombobox id="aspxcombobox2" runat="server" clientidmode="autoid" selectedindex="-1" onselectedindexchanged="aspxcombobox1_selectedindexchanged1" > <clientsideevents selectedindexchanged="function(s, e) { grid.selectrows();}" /> <items> <dx:listedititem text="selecte rows" /> <dx:listedititem text="unselectall" /> </items> </dx:aspxcombobox> i want write event "unselect all" item in combobox. how can this? you'll need write javascript function iterates thru combo-box , marks selected items false. see select/unselect checkbox fields using pure javascript , html sample code msdn:
Read more

exception - Python, pyPdf OCR error: pyPdf.utils.PdfReadError: EOF marker not found -

-
pypdf throws exception: pypdf.utils.pdfreaderror: eof marker not found i don't need fix pypdf, need eof error cause "except" block execute , skip on file, doesn't work. still causes program stop running. background: batch ocr program pdfs python, pypdf, adobe pdf ocr error: unsupported filter /lzwdecode ... saga continues. i got 10,000 pdfs in folder. ocrd, not. can't tell 'em apart. step 1 figure out ones not ocrd , ocr (see other threads details). so i'm using pypdf. exceptions related unrecognized characters , unsupported filters when try read text. guestimated if throws exception, it's got text in , doens't go in list. problem solved, right? so: pypdf import pdffilewriter, pdffilereader import sys, os, pypdf, re path = 'c:\users\homer\documents\my pdfs' filelist = os.listdir(path) has_text_list = [] does_not_have_text_list = [] pdf_name in filelist: pdf_file
Read more