Skip to content

Fix for zstd CLI accepts bogus values for numeric parameters#3268

Merged
Cyan4973 merged 3 commits into
facebook:devfrom
ctkhanhly:3070_bogus_numeric_params_CLI
Sep 21, 2022
Merged

Fix for zstd CLI accepts bogus values for numeric parameters#3268
Cyan4973 merged 3 commits into
facebook:devfrom
ctkhanhly:3070_bogus_numeric_params_CLI

Conversation

@ctkhanhly

@ctkhanhly ctkhanhly commented Sep 20, 2022
edited
Loading

Copy link
Copy Markdown
Contributor

Related Issue to #3070

Notes:

  • Originally, I was gonna throw an error in readU32FromCharChecked but this affects at least init_cLevel

Testing:

  • Created a test memlimit.sh

@yoniko

add checks to mal-formed numeric values for memory and memlimit param…
bebcbce 
…eters

Signed-off-by: Ly Cao <lycao@fb.com>
@ctkhanhly ctkhanhly changed the title add checks to mal-formed numeric values for memory and memlimit param… Fix for zstd CLI accepts bogus values for numeric parameters Sep 20, 2022
Cyan4973
Cyan4973 reviewed Sep 21, 2022
View reviewed changes
Comment thread tests/cli-tests/basic/memlimit.sh
@@ -0,0 +1,40 @@
#!/bin/sh

@Cyan4973 Cyan4973 Sep 21, 2022

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good tests !
👍

Cyan4973
Cyan4973 reviewed Sep 21, 2022
View reviewed changes
Comment thread programs/zstdcli.c Outdated
@Cyan4973

Cyan4973 commented Sep 21, 2022

Copy link
Copy Markdown
Contributor

Indeed, the solution cannot be done directly within readU32FromCharChecked(),
because this function is used to read unsigned integers from the command line
in both short command (typically one letter) and --long-command= scenarios.
Erroring on wrong suffixes only makes sense in the case of the --long-command= scenario
because short commands are allowed to stack up (for example -bi7S is valid).

The --long-command= scenario happens in 6 places,
and the logic is abstracted behind the macro NEXT_UINT32().

I believe your fix is correct, but it's written directly to serve --memory= and --memlimit=, and therefore limited to these cases.

If you update NEXT_UINT32() with your corrected logic, you would fix all current and future usages of numeric parameters in --long-command= scenarios.

yoniko
yoniko suggested changes Sep 21, 2022
View reviewed changes

@yoniko yoniko left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you @ctkhanhly!
Tests and logic look good.
There's one change that I'd like us to do here - there are other fields that use NEXT_UINT32 to read sizes and which use the same logic for parsing suffixes.
It'd be better to change the NEXT_UINT32 macro and so apply the same validation on those fields as well.

Comment thread programs/zstdcli.c Outdated
@yoniko

yoniko commented Sep 21, 2022

Copy link
Copy Markdown
Contributor

@ctkhanhly - if you have some time it'd also be useful to get the same treatment for the fields that directly use readSizeTFromChar.
The solution I'd opt for in this case is to create a NEXT_TSIZE that'd be the same as NEXT_UINT32 only it'd call readSizeTFromChar instead of readU32FromChar and use it for these fields.

Cyan4973
Cyan4973 reviewed Sep 21, 2022
View reviewed changes
Comment thread programs/zstdcli.c Outdated
@Cyan4973

Cyan4973 commented Sep 21, 2022
edited
Loading

Copy link
Copy Markdown
Contributor

I see a remaining test issue in mingw-long-test (CI).

It looks completely unrelated to this PR.
Maybe the compiler version changed for example, introducing a new warning which is flagged as an error in this test.

Anyway, I think you can safely ignore it, we'll deal with it separately.

yoniko
yoniko approved these changes Sep 21, 2022
View reviewed changes

@yoniko yoniko left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks great, thank you!

@Cyan4973

Cyan4973 commented Sep 21, 2022

Copy link
Copy Markdown
Contributor

Thanks @ctkhanhly , great bootcamp contribution !

@Cyan4973 Cyan4973 merged commit 3587877 into facebook:dev Sep 21, 2022
@Cyan4973 Cyan4973 mentioned this pull request Sep 21, 2022
Closed
@Cyan4973 Cyan4973 mentioned this pull request Dec 12, 2022
Closed
@Cyan4973 Cyan4973 mentioned this pull request Feb 9, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Cyan4973 Cyan4973 Cyan4973 approved these changes

+1 more reviewer

@yoniko yoniko yoniko approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

CLA Signed

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@ctkhanhly @Cyan4973 @yoniko @facebook-github-bot