Subject: Re: proposal: disable *printf %n specifier in libc in NetBSD 1.5
To: Todd Vierling <tv@wasabisystems.com>
From: Bill Sommerfeld <sommerfeld@orchard.arlington.ma.us>
List: tech-userlevel
Date: 09/11/2000 11:26:27
> I could see a function provided to _disable_ it, not enable it. Any program
> written to be suid shouldn't be trusting third-party format strings at all,
> but if they do, then we coupld provide those programs with such a tool.
> <sigh>
How about, in addition (ahem) compiler hacks so that if a %n format
showed up in a constant string, the compiler would generate code
equivalent to:
printf(__bless_format_string("%s%n"),
foo, &n);