Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update buffermgrdyn.cpp #3435

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Update buffermgrdyn.cpp #3435

wants to merge 1 commit into from

Conversation

marwanelmessiry72
Copy link

What I did
i added if condetion that will ensure that the poolobj.direction will not size of the string m_bufferZeroProfileName so that the string will not get out of boundaries
Why I did it
as the checkmarx tool was telling this as high severity valunerability in the code
How I verified it
added the if condition and regenerated a repoert and the valunerability disappeared
Details if related
so based on that this will also make it safe in case any one add any value to the enum of the poolobj.direction as it will make safe from being out of boundaries

@mssonicbld
Copy link
Collaborator

/azp run

@linux-foundation-easycla Linux Foundation: EasyCLA
Copy link

linux-foundation-easycla bot commented Dec 20, 2024
edited
Loading

CLA Signed

  • ✅login: marwanelmessiry72 / (9c2eb33)

The committers listed above are authorized under a signed CLA.

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

prsunny
prsunny reviewed Jan 6, 2025
View reviewed changes
cfgmgr/buffermgrdyn.cpp
@@ -325,10 +325,13 @@ void BufferMgrDynamic::loadZeroPoolAndProfiles()
auto &poolObj = poolSearchRef->second;
if (poolObj.zero_profile_name.empty())
{
if(poolObj.direction>= 0 && poolObj.direction <= 2) // ensuring the poolpbj.direction will not get out of boundaries
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please fix alignment

@prsunny prsunny requested a review from kperumalbfn January 6, 2025 19:31
@prsunny
Copy link
Collaborator

prsunny commented Jan 6, 2025

@mramezani95 to review

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@prsunny prsunny prsunny left review comments

@kperumalbfn kperumalbfn Awaiting requested review from kperumalbfn

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@marwanelmessiry72 @mssonicbld @prsunny