998abe1deb
For EINVAL, it doesn't make sense to keep parsing.
(For E2BIG, it might make some sense.)
Found by LLVM ASan.
```
=================================================================
==81622==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x6020000000f2 at pc 0x00010d2746ca bp 0x7ffee29a9980 sp 0x7ffee29a9978
READ of size 1 at 0x6020000000f2 thread T0
#0 0x10d2746c9 in netlib_parseurl netlib_parseurl.c:121
#1 0x10d26b293 in parseurl webclient.c:479
#2 0x10d265e48 in webclient_perform webclient.c:690
#3 0x10d277c5b in main main.c:210
#4 0x7fff7a06f3d4 in start+0x0 (libdyld.dylib:x86_64+0x163d4)
0x6020000000f2 is located 0 bytes to the right of 2-byte region [0x6020000000f0,0x6020000000f2)
allocated by thread T0 here:
#0 0x10d3996d3 in wrap_strdup+0x203 (libclang_rt.asan_osx_dynamic.dylib:x86_64+0x3e6d3)
#1 0x10d276abe in main main.c:147
#2 0x7fff7a06f3d4 in start+0x0 (libdyld.dylib:x86_64+0x163d4)
SUMMARY: AddressSanitizer: heap-buffer-overflow netlib_parseurl.c:121 in netlib_parseurl
Shadow bytes around the buggy address:
0x1c03ffffffc0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x1c03ffffffd0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x1c03ffffffe0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x1c03fffffff0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0x1c0400000000: fa fa fd fd fa fa fd fd fa fa 00 00 fa fa 00 00
=>0x1c0400000010: fa fa 00 fa fa fa 00 00 fa fa 00 06 fa fa[02]fa
0x1c0400000020: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x1c0400000030: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x1c0400000040: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x1c0400000050: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
0x1c0400000060: fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa fa
Shadow byte legend (one shadow byte represents 8 application bytes):
Addressable: 00
Partially addressable: 01 02 03 04 05 06 07
Heap left redzone: fa
Freed heap region: fd
Stack left redzone: f1
Stack mid redzone: f2
Stack right redzone: f3
Stack after return: f5
Stack use after scope: f8
Global redzone: f9
Global init order: f6
Poisoned by user: f7
Container overflow: fc
Array cookie: ac
Intra object redzone: bb
ASan internal: fe
Left alloca redzone: ca
Right alloca redzone: cb
Shadow gap: cc
==81622==ABORTING
```
|
||
|---|---|---|
| .. | ||
| chat | ||
| cjson | ||
| codecs | ||
| dhcpc | ||
| dhcpd | ||
| discover | ||
| esp8266 | ||
| ftpc | ||
| ftpd | ||
| iperf | ||
| libcurl4nx | ||
| mqttc | ||
| netcat | ||
| netinit | ||
| netlib | ||
| ntpclient | ||
| ping | ||
| pppd | ||
| smtp | ||
| telnetc | ||
| telnetd | ||
| tftpc | ||
| thttpd | ||
| usrsock_rpmsg | ||
| webclient | ||
| webserver | ||
| xmlrpc | ||
| .gitignore | ||
| Make.defs | ||
| Makefile | ||
| README.md | ||
Network Utilities
Contents
- uIP Applications
- Other Network Applications
- Tips for Using Telnetd
- Tips for Using DHCPC
uIP Applications
This directory contains most of the network applications contained under the
uIP-1.0 apps directory. As the uIP apps/README.md says, these applications
are not all heavily tested. These uIP-based apps include:
-
dhcpc– Dynamic Host Configuration Protocol (DHCP) client. Seeapps/include/netutils/dhcpc.hfor interface information. -
smtp– Simple Mail Transfer Protocol (SMTP) client. Seeapps/include/netutils/smtp.hfor interface information. -
webclient– HTTP web client. Seeapps/include/netutils/webclient.hfor interface information. -
webserver– HTTP web server. Seeapps/include/netutils/httpd.hfor interface information.
You may find additional information on these apps in the uIP forum accessible through: http://www.sics.se/~adam/uip/index.php/Main_Page. Some of these (such as the uIP web server) have grown some additional functionality due primarily to NuttX user contributions.
Other Network Applications
Additional applications that were not part of uIP (but which are highly influenced by uIP) include:
-
dhcpd– Dynamic Host Configuration Protocol (DHCP) server. Seeapps/include/netutils/dhcpd.hfor interface information. -
discover– This daemon is useful for discovering devices in local networks, especially with DHCP configured devices. It listens for UDP broadcasts which also can include a device class so that groups of devices can be discovered. It is also possible to address all classes with a kind of broadcast discover. (Contributed by Max Holtzberg). -
esp8266– An ESP8266 networking layer contributed by Pierre-Noel Bouteville. -
json– cJSON is an ultra-lightweight, portable, single-file, simple-as-can-be ANSI-C compliant JSON parser, under MIT license. Embeddable Lightweight XML-RPC Server discussed at http://www.drdobbs.com/web-development/an-embeddable-lightweight-xml-rpc-server/184405364.This code was taken from http://sourceforge.net/projects/cjson/ and adapted for NuttX by Darcy Gong.
-
tftpc– TFTP client. Seeapps/include/netutils/tftp.hfor interface information. -
telnetc– This is a port of libtelnet to NuttX. This is a public domain Telnet client library available from https://github.com/seanmiddleditch/libtelnet modified for use with NuttX. Original Authors: Sean Middleditch sean@sourcemud.org, Jack Kelly endgame.dos@gmail.com and Katherine Flavel kate@elide.org -
telnetd– TELNET server. This is the Telnet logic adapted from uIP and generalized for use as the front end to any shell. The telnet daemon creates sessions that are wrapped as character devices and mapped tostdin,stdoutandstderr. Now the telnet session can be inherited by spawned tasks. -
ftpc– FTP client. Seeapps/include/netutils/ftpc.hfor interface information. -
ftpd– FTP server. Seeapps/include/netutils/ftpd.hfor interface information. -
ntpclient– This is a fragmentary NTP client. It neither well-tested nor mature nor complete at this point in time. -
thttpd– This is a port of Jef Poskanzer's THTTPD HTPPD server. See http://acme.com/software/thttpd/ for general THTTPD information. Seeapps/include/netutils/thttpd.hfor interface information. Applications using thisthttpdwill need to provide the following definitions in thedefconfigfile to select the appropriatenetutilslibraries:CONFIG_NETUTILS_NETLIB=y CONFIG_NETUTILS_THTTPD=y -
xmlrpc– The Embeddable Lightweight XML-RPC Server discussed at http://www.drdobbs.com/web-development/an-embeddable-lightweight-xml-rpc-server/184405364 -
ping– This is an unfinished implementation of ping and ping6 using raw sockets. It is not yet hooked into the configuration or build systems.Current
ping/ping6logic in NSH makes illegal calls into the OS in order to implementping/ping6. One correct implementation would be to use raw sockets to implementping/ping6as a user application. This is a first cut at such an implementation.
Tips for Using Telnetd
Telnetd is set up to be the front end for a shell. The primary use of Telnetd in
NuttX is to support the NuttShell (NSH) Telnet front end. See
apps/include/netutils/telnetd.h for information about how to incorporate
Telnetd into your custom applications.
To enable and link the Telnetd daemon, you need to include the following in in your defconfig file:
CONFIG_NETUTILS_NETLIB=y
CONFIG_NETUTILS_TELNETD=y
Also if the Telnet console is enabled, make sure that you have the following set in the NuttX configuration file or else the performance will be very bad (because there will be only one character per TCP transfer):
CONFIG_STDIO_BUFFER_SIZE– Some value>= 64.CONFIG_STDIO_LINEBUFFER=y– Since Telnetd is line oriented, line buffering is optimal.
Tips for Using DHCPC
If you use DHCPC/D, then some special configuration network options are required. These include:
CONFIG_NET=yCONFIG_NET_UDP=y– UDP support is required for DHCP (as well as various other UDP-related configuration settings).CONFIG_NET_BROADCAST=y– UDP broadcast support is needed.CONFIG_NET_ETH_PKTSIZE=650or larger. The client must be prepared to receive DHCP messages of up to576bytes (excluding Ethernet, IP or UDP headers and FCS). Note: Note that the actual MTU setting will depend upon the specific link protocol. Here Ethernet is indicated.