about summary refs log tree commit diff
path: root/.gitmodules
diff options
context:
space:
mode:
authorJohn Keeping <john@keeping.me.uk>2014-01-12 16:49:40 +0000
committerJason A. Donenfeld <Jason@zx2c4.com>2014-01-12 19:32:20 +0100
commit382ecf152e1bd9546f6c84ace71c62ca07f6648b (patch)
treeb3a66c0bbab90bd5bd4abf20647c5203061099a8 /.gitmodules
parentfilter: split filter functions into their own file (diff)
downloadcgit-pink-382ecf152e1bd9546f6c84ace71c62ca07f6648b.tar.gz
cgit-pink-382ecf152e1bd9546f6c84ace71c62ca07f6648b.zip
cache: don't leave cache_slot fields uninitialized
Valgrind says:

==18344== Conditional jump or move depends on uninitialised value(s)
==18344==    at 0x406C83: open_slot (cache.c:63)
==18344==    by 0x407478: cache_ls (cache.c:403)
==18344==    by 0x404C9A: process_request (cgit.c:639)
==18344==    by 0x406BD2: fill_slot (cache.c:190)
==18344==    by 0x4071A0: cache_process (cache.c:284)
==18344==    by 0x404461: main (cgit.c:952)
==18344==  Uninitialised value was created by a stack allocation
==18344==    at 0x40738B: cache_ls (cache.c:375)

This is caused by the keylen field being used to calculate whether or
not a slot is matched.  We never then check the value of this and the
length of data read depends on the key length read from the file so this
isn't dangerous, but it's nice to avoid branching based on uninitialized
data.

Signed-off-by: John Keeping <john@keeping.me.uk>
Diffstat (limited to '')
0 files changed, 0 insertions, 0 deletions
 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2025-02-24 07:38:38 +0000


 


ubject'>Claim to be curl(1) in titleJune McEnroe

IMDB serves a page to our dumb User-Agent whose <title> is past the 8K
boundary but serves something normal to curl(1).



2019-10-02Add The Red Threads of FortuneJune McEnroe


2019-09-28Add The Black Tides of HeavenJune McEnroe


2019-09-27Fail on HTTP failure status in titleJune McEnroe


2019-09-23Add Trail of LightningJune McEnroe


2019-09-22Revert "Enable cookies in title"June McEnroe

This reverts commit 279111dda15dd9170e11b9688eb973f2af2e6300.



2019-09-20Enable cookies in titleJune McEnroe

Perhaps this will make it less suspicious to Google. Who knows.



2019-09-16Use sensitivity aliases in TF2June McEnroe


2019-09-16Add The Just CityJune McEnroe


2019-09-12Only GET the final redirect locationJune McEnroe


2019-09-12Consume entire bodyJune McEnroe

Aborting the request and leaving data around may be causing intermittent
errors. Just discard the rest of the data.



2019-09-10Add title -v flagJune McEnroe


2019-09-10Use curl error bufferJune McEnroe


2019-09-10Set Accept-Encoding in titleJune McEnroe

Because apparently it's fine for servers to respond with
Content-Encoding you didn't ask for, and curl won't decode it if you
didn't ask for it.



2019-09-08Set title User-AgentJune McEnroe

Some things don't like you if you don't send one.



2019-09-07Add -x flag to titleJune McEnroe


2019-09-07Ignore SIGPIPE in relayJune McEnroe

Allows restarting consumers safely.



2019-09-07Add A Memory Called EmpireJune McEnroe


2019-09-05Handle lack of Content-TypeJune McEnroe


2019-09-05Use CURLINFO_CONTENT_TYPEJune McEnroe

Oops, didn't see this.



2019-09-05Decode entities in titlesJune McEnroe


2019-09-05Print title as soon as it's availableJune McEnroe


2019-09-05Use CURL_PREFIX to set flagsJune McEnroe


2019-09-05Add titleJune McEnroe


2019-09-04Add Avorter n'est pas tuerJune McEnroe


2019-08-29Unset executable on shell scriptsJune McEnroe


2019-08-29Add long-missing setopt to bin.7June McEnroe


2019-08-29Add editJune McEnroe