kubo
commented
5 years ago
PATH_MAXis not enough to have as buffer size as it may be the reason of overflow in fgets used below
There is no buffer overflow. Because fgets writes at most PATH_MAX bytes to buf even when one line is longer than PATH_MAX. However when a line is too long and the line after PATH_MAX bytes is accidentally similar format with the beginning of a line, plthook may read it as memory protection mode of a memory region. I fixed it by ecb60c6.
https://github.com/kubo/plthook/blob/a1bbcea07d22e23a984f07b5abde3e5d13bb1725/plthook_elf.c#L383
PATH_MAXis not enough to have as buffer size as it may be the reason of overflow infgetsused belowProbably, it's better to use something like
char buf[PATH_MAX + 128]...UPDATE: Here is the kernel part which generates content of
/proc/self/mapsand there are no explicit limits in line length: https://elixir.bootlin.com/linux/latest/source/fs/proc/task_mmu.c#L300