Skip to content

L
libzmq
Commit cac5e74d authored by Trevor Bernard's avatar Trevor Bernard
Browse files
Options

Merge pull request #1096 from hintjens/master 

Problem: API violations are treated as recoverable errors
parents 1d236d81 d0667461
Hide whitespace changes
Inline Side-by-side
Showing with 30 additions and 5 deletions
configure.ac
View file @ cac5e74d
...@@ -144,6 +144,17 @@ else ...@@ -144,6 +144,17 @@ else
libzmq_pedantic="yes" libzmq_pedantic="yes"
fi fi
AC_ARG_WITH([militant],
[AS_HELP_STRING([--with-militant],
[Enable militant API assertions])],
[zmq_militant="yes"],
[])
if test "x$zmq_militant" = "xyes"; then
AC_DEFINE(ZMQ_ACT_MILITANT, 1, [Enable militant API assertions])
fi
# By default compiling with -Werror except OSX. # By default compiling with -Werror except OSX.
libzmq_werror="yes" libzmq_werror="yes"
......
src/options.cpp
View file @ cac5e74d
...@@ -65,7 +65,9 @@ int zmq::options_t::setsockopt (int option_, const void *optval_, ...@@ -65,7 +65,9 @@ int zmq::options_t::setsockopt (int option_, const void *optval_,
{ {
bool is_int = (optvallen_ == sizeof (int)); bool is_int = (optvallen_ == sizeof (int));
int value = is_int? *((int *) optval_): 0; int value = is_int? *((int *) optval_): 0;
#if defined (ZMQ_ACT_MILITANT)
bool malformed = true; // Did caller pass a bad option value?
#endif
switch (option_) { switch (option_) {
case ZMQ_SNDHWM: case ZMQ_SNDHWM:
if (is_int && value >= 0) { if (is_int && value >= 0) {
...@@ -440,10 +442,23 @@ int zmq::options_t::setsockopt (int option_, const void *optval_, ...@@ -440,10 +442,23 @@ int zmq::options_t::setsockopt (int option_, const void *optval_,
} }
break; break;
default: default:
#if defined (ZMQ_ACT_MILITANT)
// There are valid scenarios for probing with unknown socket option
// values, e.g. to check if security is enabled or not. This will not
// provoke a militant assert. However, passing bad values to a valid
// socket option will, if ZMQ_ACT_MILITANT is defined.
malformed = false;
#endif
break; break;
} }
#if defined (ZMQ_ACT_MILITANT)
// There is no valid use case for passing an error back to the application
// when it sent malformed arguments to a socket option. Use ./configure
// --with-militant to enable this checking.
if (malformed)
zmq_assert (false);
#endif
errno = EINVAL; errno = EINVAL;
return -1; return -1;
} }
...@@ -517,6 +532,7 @@ int zmq::options_t::getsockopt (int option_, void *optval_, size_t *optvallen_) ...@@ -517,6 +532,7 @@ int zmq::options_t::getsockopt (int option_, void *optval_, size_t *optvallen_)
return 0; return 0;
} }
break; break;
case ZMQ_TYPE: case ZMQ_TYPE:
if (is_int) { if (is_int) {
*value = type; *value = type;
...@@ -757,9 +773,7 @@ int zmq::options_t::getsockopt (int option_, void *optval_, size_t *optvallen_) ...@@ -757,9 +773,7 @@ int zmq::options_t::getsockopt (int option_, void *optval_, size_t *optvallen_)
return 0; return 0;
} }
break; break;
}
}
errno = EINVAL; errno = EINVAL;
return -1; return -1;
} }
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment