From 93a2c3305190ca87cc1a6c98868c251ef67c3f37 Mon Sep 17 00:00:00 2001
From: "Jason A. Donenfeld" <Jason@zx2c4.com>
Date: Sat, 14 Jul 2018 05:09:27 +0200
Subject: auth-filter: do not write more than we've read

Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
---
 cgit.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/cgit.c b/cgit.c
index e2d7891..fda0aa4 100644
--- a/cgit.c
+++ b/cgit.c
@@ -659,13 +659,13 @@ static inline void open_auth_filter(const char *function)
 static inline void authenticate_post(void)
 {
 	char buffer[MAX_AUTHENTICATION_POST_BYTES];
-	unsigned int len;
+	ssize_t len;
 
 	open_auth_filter("authenticate-post");
 	len = ctx.env.content_length;
 	if (len > MAX_AUTHENTICATION_POST_BYTES)
 		len = MAX_AUTHENTICATION_POST_BYTES;
-	if (read(STDIN_FILENO, buffer, len) < 0)
+	if ((len = read(STDIN_FILENO, buffer, len)) < 0)
 		die_errno("Could not read POST from stdin");
 	if (write(STDOUT_FILENO, buffer, len) < 0)
 		die_errno("Could not write POST to stdout");
-- 
cgit 1.4.1

h=1.4'>summary</a> <a href='/pounce/refs/?h=1.4&amp;id=f2555e841105a7ead9ed4794fe2b3d185ad7f880'>refs</a> <a class='active' href='/pounce/log/ring.c?h=1.4&amp;showmsg=1&amp;follow=1'>log</a> <a href='/pounce/tree/ring.c?h=1.4&amp;id=f2555e841105a7ead9ed4794fe2b3d185ad7f880'>tree</a> <a href='/pounce/commit/ring.c?h=1.4&amp;id=f2555e841105a7ead9ed4794fe2b3d185ad7f880&amp;follow=1'>commit</a> <a href='/pounce/diff/ring.c?h=1.4&amp;id=f2555e841105a7ead9ed4794fe2b3d185ad7f880&amp;follow=1'>diff</a></td><td class='form'><form class='right' method='get' action='/pounce/log/ring.c'>
<input type='hidden' name='h' value='1.4'/><input type='hidden' name='id' value='f2555e841105a7ead9ed4794fe2b3d185ad7f880'/><input type='hidden' name='showmsg' value='1'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/pounce/log/?h=1.4&amp;id=f2555e841105a7ead9ed4794fe2b3d185ad7f880&amp;showmsg=1&amp;follow=1'>root</a>/<a href='/pounce/log/ring.c?h=1.4&amp;id=f2555e841105a7ead9ed4794fe2b3d185ad7f880&amp;showmsg=1&amp;follow=1'>ring.c</a> (<a href='/pounce/log/ring.c?h=1.4&amp;id=f2555e841105a7ead9ed4794fe2b3d185ad7f880&amp;showmsg=1'>unfollow</a>)</div><div class='content'><table class='list nowrap'><tr class='nohover'><th></th><th class='left'>Commit message (<a href='/pounce/log/ring.c?h=1.4&amp;id=f2555e841105a7ead9ed4794fe2b3d185ad7f880&amp;follow=1'>Collapse</a>)</th><th class='left'>Author</th></tr>
<tr class='logheader'><td><span title='2019-10-27 03:11:49 -0400'>2019-10-27</span></td><td class='logsubject'><a href='/pounce/commit/ring.c?h=1.4&amp;id=cc4f823bf4c27fa9efeeeef7cfe7e5fb62117163&amp;follow=1'>Output ring info on SIGINFO</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-27 02:51:22 -0400'>2019-10-27</span></td><td class='logsubject'><a href='/pounce/commit/server.c?h=1.4&amp;id=dead932716bcd81cf00a40d00b769a6eb79a9e60&amp;follow=1'>Improve client/server error messages</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-27 01:22:30 -0400'>2019-10-27</span></td><td class='logsubject'><a href='/pounce/commit/rc.pounce?h=1.4&amp;id=4bd6eca3644642ff20d48d38c250d7ab1a62ec78&amp;follow=1'>Add reload cmd to rc script</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
Using daemon(8) makes this way more awkward than it should be.


</td></tr>
<tr class='logheader'><td><span title='2019-10-27 00:44:14 -0400'>2019-10-27</span></td><td class='logsubject'><a href='/pounce/commit/pounce.1?h=1.4&amp;id=755de4c9500fa9fdafc5ac82ee16dd7a19013b9f&amp;follow=1'>Reload certificate on SIGUSR1</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-27 00:24:48 -0400'>2019-10-27</span></td><td class='logsubject'><a href='/pounce/commit/client.c?h=1.4&amp;id=8b8e2b5165e171e75d2299115f89057f25322a68&amp;follow=1'>Drop clients on zero-length reads</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-27 00:17:25 -0400'>2019-10-27</span></td><td class='logsubject'><a href='/pounce/commit/bounce.c?h=1.4&amp;id=17e10e1c43c7c0e215c99e3506be36f48f41e77d&amp;follow=1'>Explicitly tls_handshake new clients</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
This prevents a client connecting, sending nothing, and getting blocked
in tls_read immediately.


</td></tr>
<tr class='logheader'><td><span title='2019-10-26 22:55:08 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/README.7?h=1.4&amp;id=3edd75d21cf0dd7f93db74431dd73c23f6f9cc55&amp;follow=1'>Document rationale</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 22:37:18 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/state.c?h=1.4&amp;id=ed4a5d35864edac6da02a2ca3970f45b1279911b&amp;follow=1'>Handle nick collision</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 22:15:47 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/state.c?h=1.4&amp;id=437162dca3dff21272328908054b37b19351a228&amp;follow=1'>Wait for AUTHENTICATE + from server</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 20:20:30 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/server.c?h=1.4&amp;id=3a3ebb32578b3f0189b3d048c98db8bd71208153&amp;follow=1'>Respond to PING with same parameter</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 20:15:29 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/server.c?h=1.4&amp;id=77426b0f3e2700fba2fb1011c5096c9b0a7916c1&amp;follow=1'>Add undocumented flag to disable verification</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 19:21:15 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/state.c?h=1.4&amp;id=13c061bee881d0e5dc5143fc196251cfc3da2c2a&amp;follow=1'>Do not require RPL_ISUPPORT for stateReady</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 18:14:10 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/bounce.c?h=1.4&amp;id=ea0a9f3c813eefd5d498a00c0c9d9785bbe5e2b2&amp;follow=1'>Implement graceful shutdown</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 16:38:36 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/client.c?h=1.4&amp;id=78a685fa2293b7797906d3225f7a302ed58ce79e&amp;follow=1'>Require PASS before USER</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
Prevent creating a ring consumer without authentication.


</td></tr>
<tr class='logheader'><td><span title='2019-10-26 04:57:33 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/state.c?h=1.4&amp;id=648c5cc21484a4f0d9846f04bc47c1e35fa18234&amp;follow=1'>Track channel topics</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 02:25:04 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/pounce.1?h=1.4&amp;id=3beb01f99ac5ea9a22c55edbf0e7b095e1cb5b0d&amp;follow=1'>Set AWAY when no clients are connected</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 02:10:03 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/state.c?h=1.4&amp;id=d95af1b6e0d07343049bec988e57b13173d472b9&amp;follow=1'>Add flags to request TOPIC and NAMES on client connect</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 01:41:03 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/client.c?h=1.4&amp;id=2cbee2917676bab76491ccd91c846d1f02043e34&amp;follow=1'>Oops</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 01:23:04 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/client.c?h=1.4&amp;id=809b401c37e2fb8a3087244bd9cae711769c0474&amp;follow=1'>Disconnect client on unknown command</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
During registration, no other commands should be sent. Afterwards, only
intercepted commands will get parsed.


</td></tr>
<tr class='logheader'><td><span title='2019-10-26 01:17:16 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/pounce.1?h=1.4&amp;id=f87f40956f9347ee8632b1851dfa0521437f446c&amp;follow=1'>Allow reading sensitive information from files</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-26 00:35:31 -0400'>2019-10-26</span></td><td class='logsubject'><a href='/pounce/commit/rc.pounce?h=1.4&amp;id=2621dc248cdc71034495a41cd388de105d6f6b1a&amp;follow=1'>Add rc script</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-25 23:47:41 -0400'>2019-10-25</span></td><td class='logsubject'><a href='/pounce/commit/Makefile?h=1.4&amp;id=50fc795e7bf594597a21df40ab8157c5f43c23a5&amp;follow=1'>Add install and uninstall targets</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-25 23:41:27 -0400'>2019-10-25</span></td><td class='logsubject'><a href='/pounce/commit/pounce.1?h=1.4&amp;id=e948a8b5b413486c1070e4684ad6b499564f9373&amp;follow=1'>Expand documentation</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
</td></tr>
<tr class='logheader'><td><span title='2019-10-25 21:09:56 -0400'>2019-10-25</span></td><td class='logsubject'><a href='/pounce/commit/state.c?h=1.4&amp;id=c45d919ac3518d014277d715944ead2c499cacfe&amp;follow=1'>Add AGPLv3 notice on client registration</a></td><td>June McEnroe</td></tr>
<tr class='nohover-highlight'><td/><td colspan='3' class='logmsg'>
OwO


</td></tr>
<tr class='logheader'><td><span title='2019-10-25 20:35:36 -0400'>2019-10-25</span></td><td class='logsubject'><a href='/pounce/commit/pounce.1?h=1.4&amp;id=616a243635c6185e95b5e26417243be8382c1523&amp;follow=1'>Rename project pounce</a></td><td>June McEnroe
	Commit message (Collapse)	Author
2019-10-27	Output ring info on SIGINFO	June McEnroe

2019-10-27	Improve client/server error messages	June McEnroe

2019-10-27	Add reload cmd to rc script	June McEnroe
	Using daemon(8) makes this way more awkward than it should be.
2019-10-27	Reload certificate on SIGUSR1	June McEnroe

2019-10-27	Drop clients on zero-length reads	June McEnroe

2019-10-27	Explicitly tls_handshake new clients	June McEnroe
	This prevents a client connecting, sending nothing, and getting blocked in tls_read immediately.
2019-10-26	Document rationale	June McEnroe

2019-10-26	Handle nick collision	June McEnroe

2019-10-26	Wait for AUTHENTICATE + from server	June McEnroe

2019-10-26	Respond to PING with same parameter	June McEnroe

2019-10-26	Add undocumented flag to disable verification	June McEnroe

2019-10-26	Do not require RPL_ISUPPORT for stateReady	June McEnroe

2019-10-26	Implement graceful shutdown	June McEnroe

2019-10-26	Require PASS before USER	June McEnroe
	Prevent creating a ring consumer without authentication.
2019-10-26	Track channel topics	June McEnroe

2019-10-26	Set AWAY when no clients are connected	June McEnroe

2019-10-26	Add flags to request TOPIC and NAMES on client connect	June McEnroe

2019-10-26	Oops	June McEnroe

2019-10-26	Disconnect client on unknown command	June McEnroe
	During registration, no other commands should be sent. Afterwards, only intercepted commands will get parsed.
2019-10-26	Allow reading sensitive information from files	June McEnroe

2019-10-26	Add rc script	June McEnroe

2019-10-25	Add install and uninstall targets	June McEnroe

2019-10-25	Expand documentation	June McEnroe

2019-10-25	Add AGPLv3 notice on client registration	June McEnroe
	OwO
2019-10-25	Rename project pounce	June McEnroe