146887 – Clean up Reader.cpp Windows event log reader program

Bug 146887 - Clean up Reader.cpp Windows event log reader program

Summary: Clean up Reader.cpp Windows event log reader program

Status:	CLOSED FIXED

Alias:	None

Product:	z_Archived
Classification:	Eclipse Foundation
Component:	TPTP.monitoring (show other bugs)
Version:	unspecified
Hardware:	PC Windows 2000

Importance:	P1 normal (vote)
Target Milestone:	---
Assignee:	Cindy Jin
QA Contact:

URL:
Whiteboard:	closed460
Keywords:	plan

Depends on:
Blocks:

Reported:	2006-06-13 14:23 EDT by Dave Smith
Modified:	2010-06-03 15:08 EDT (History)
CC List:	0 users

See Also:

Attachments
Reader.cpp (22.10 KB, text/plain) 2007-05-03 15:00 EDT, Cindy Jin	no flags	Details
Reader.cpp to address the memory leaking problem (22.86 KB, text/plain) 2007-05-04 18:38 EDT, Cindy Jin	no flags	Details
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Dave Smith

2006-06-13 14:23:46 EDT

The Reader.cpp Windows event log reader program that is used to convert the log to a text file so it can be parsed by GLA should be cleaned up.  There is some code that potentially could cause buffer overruns.  For example the following code is included in GetDescriptionString:

	// Since the description text could not be retrieved get the message strings
	*pMessage = new char[(record->DataOffset - record->StringOffset) + 5];
	DWORD recordStringStart = (DWORD)record + record->StringOffset;
	LPSTR recordString = (LPSTR)recordStringStart;


	// initialize the array to nulls
	memset(*pMessage, NULL, (record->DataOffset - record->StringOffset));

	for (int i=0; i < record->NumStrings; i++)
	{
		removeNewLine(recordString);
		strcat(*pMessage, recordString);
		strcat(*pMessage, " ");
		recordStringStart = recordStringStart + strlen(recordString) + 1;
		recordString = (LPSTR)recordStringStart;
	}

The array in pMessage may not be allocated large enough to hold all of the strings and the initialization of the array to NULL's does not cover all of the array (eg the 5 extra bytes allocated).  This new array is not freed so there is a memory leak.

The string returned by FormatMessage is never freed either.  See documentation for FormatMessage.

Also, comments should be added to the code to make it more maintainable.

Comment 1 Dave Smith

2006-06-13 14:25:06 EDT

This will be a candidate for fixing in 4.3.

Comment 2 Cindy Jin

2006-10-23 11:41:31 EDT

Cannot contain in TPTP V4.3(i3)

Comment 3 Dave Smith

2007-01-17 22:52:09 EST

Added sizing.

Comment 4 Dave Smith

2007-02-06 02:54:44 EST

Targetting to i3 and increasing priority to indicate it is planned for 4.4.

Comment 5 Cindy Jin

2007-05-03 15:00:55 EDT

Created attachment 65822 [details]
Reader.cpp

Comment 6 Cindy Jin

2007-05-04 18:38:05 EDT

Created attachment 65975 [details]
Reader.cpp to address the memory leaking problem

Comment 7 Dave Smith

2007-05-07 00:44:39 EDT

Committed fixed reader.cpp file to TPTP Head CVS.

Comment 8 Paul Slauenwhite

2009-06-30 09:53:05 EDT

As of TPTP 4.6.0, TPTP is in maintenance mode and focusing on improving quality by resolving relevant enhancements/defects and increasing test coverage through test creation, automation, Build Verification Tests (BVTs), and expanded run-time execution. As part of the TPTP Bugzilla housecleaning process (see http://wiki.eclipse.org/Bugzilla_Housecleaning_Processes), this enhancement/defect is verified/closed by the Project Lead since this originator of this enhancement/defect has an inactive Bugzilla account and considered to be fixed. If this enhancement/defect is still unresolved and reproducible in the latest TPTP release (http://www.eclipse.org/tptp/home/downloads/), please re-open.