[TLVWriter] TLVWriter has direct access to write buffer in ways that can become unsafe in the future #31769
Labels
Comments
tcarmelveilleux
pushed a commit
to tcarmelveilleux/connectedhomeip
that referenced
this issue
Jan 30, 2024
- Remove all writing to mWritePoint that occur outside of WriteData
- Remove unsafe usage of CONFIG_HAVE_VSNPRINTF_EX
- Does not impact public API as it was one underlying
possible optimization, and the remaining code would work.
Also, not used in SDK at all.
- Removed secondary paths that were potentially unsafe in TLVWriter::WriteElementHead
Fixes project-chip#31769
Testing done:
- All existing unit tests still pass.
- Only removed and non-functionally-refactored code.
mergify bot
pushed a commit
that referenced
this issue
Jan 31, 2024
* Remove several direct uses of TLVWriter::mWritePoint
- Remove all writing to mWritePoint that occur outside of WriteData
- Remove unsafe usage of CONFIG_HAVE_VSNPRINTF_EX
- Does not impact public API as it was one underlying
possible optimization, and the remaining code would work.
Also, not used in SDK at all.
- Removed secondary paths that were potentially unsafe in TLVWriter::WriteElementHead
Fixes #31769
Testing done:
- All existing unit tests still pass.
- Only removed and non-functionally-refactored code.
* Restyled by clang-format
* Update src/lib/core/TLVWriter.cpp
Co-authored-by: Kevin Schoedel <[email protected]>
---------
Co-authored-by: [email protected] <[email protected]>
Co-authored-by: Restyled.io <[email protected]>
Co-authored-by: Kevin Schoedel <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
TLVWriter directly touches the write buffer outside of
WriteData, which is the only part that actually can properly manage the stream.We need to remove all direct access to
mWritePointin TLVWriter to prevent unsafe usage of buffers in future updated logic.This should not impact the public API.
The text was updated successfully, but these errors were encountered: