Commits
- Commit:
878b30c0bc1446ba933dc4539438512766183500
- From:
- Günther Noack <guenther@unix-ag.uni-kl.de>
- Via:
- Dan Cross <crossd@gmail.com>
- Date:
fspread: fix buffer overflow
Without this fix, fspread is trusting the server to return as much
data as requested, or less. If a server responds with more data
though, fspread writes beyond the bounds of the buffer to fill, which
is passed in by the caller. It depends on the caller of fspread()
where that buffer is, so there are various possible attack vectors.
In the Plan9 kernel, I found this implemented in devmnt.c, where
overly large responses are truncated to the size requested before
copying, so I assume that this strategy works here too.
This also affects fsread() and fsreadn(), which are based on
fspread().
- Commit:
fa325e9b42b0bdfb48857d1958d9fb7ceac55151
- From:
- Dan Cross <cross@gajendra.net>
- Date:
Trivial changes: whitespace and modes.
Remote whitespace at the ends of lines.
Remove blank lines from the ends of files.
Change modes on source files so that they
are not executable.
Signed-off-by: Dan Cross <cross@gajendra.net>
- Commit:
46f79934b79ef526ed42bbe5a565e6b5d884d24a
- From:
- rsc <devnull@localhost>
- Date:
lib9pclient is the new libfs