mailmap: avoid out-of-bounds memory access

AddressSanitizer (http://clang.llvm.org/docs/AddressSanitizer.html) complains of a one-byte buffer underflow in parse_name_and_email() while running the test suite. And indeed, if one of the lines in the mailmap begins with '<', we dereference the address just before the beginning of the buffer when looking for whitespace to remove, before checking that we aren't going too far. So reverse the order of the tests to make sure that we don't read outside the buffer. Signed-off-by: Romain Francoise <romain@orebokech.com> Signed-off-by: Jeff King <peff@peff.net>
2024-05-05 03:36:31 +02:00 · 2012-10-28 00:49:55 +02:00 · 2012-10-28 00:49:55 +02:00 · 3174bc5ccf
parent 7e2010537e
commit 3174bc5ccf
1 changed files with 1 additions and 1 deletions
--- a/mailmap.c
+++ b/mailmap.c
@ -118,7 +118,7 @@ static char *parse_name_and_email(char *buffer, char **name,
 	while (isspace(*nstart) && nstart < left)
 		++nstart;
 	nend = left-1;
-	while (isspace(*nend) && nend > nstart)
+	while (nend > nstart && isspace(*nend))
 		--nend;

 	*name = (nstart < nend ? nstart : NULL);