[PATCH 0 of 2] [patch] some issues found by gcc undef sanitizer
Vladimir Homutov
vl at inspert.ru
Fri Oct 27 11:58:43 UTC 2023
Hello,
Below are two patches, created by results of running nginx-tests with
GCC undefined behaviour sanitizer enabled.
The first one is about memcpy() with NULL second argument calls, which
are considere undefined behaviour by sanitizer. While the actual harm
is arguable, having such calls is not a good practice.
Most of them are results of passing empty ngx_str_t, either for logging
or in some other cases.
I've decided to test arguments in ngx_resolver_dup() as it seems that
adding checks to the calling code will introduce to much changes. YMMV.
In ngx_http_variables_request_body() all buffers are copied to output,
which may include special. Probably the check must be ngx_buf_special() ?
Other cases are obvious checks that allow to skip copy if there is
nothing to do actually.
More information about the nginx-devel
mailing list