]> git.ipfire.org Git - thirdparty/git.git/commit - fetch-pack.c
projects / thirdparty / git.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c471623) | patch
v0 protocol: use size_t for capability length/offset
authorJeff King <peff@peff.net>
Fri, 14 Apr 2023 21:25:20 +0000 (17:25 -0400)
committerJunio C Hamano <gitster@pobox.com>
Fri, 14 Apr 2023 22:08:13 +0000 (15:08 -0700)
commit7ce4c8f752bc0da682acbda6457d6543ad5d0069
tree545d1046f411277a392118d3520c8385970a0765tree | snapshot
parentc4716236f218cd1278bde43ed2e6773f1d2e667acommit | diff
v0 protocol: use size_t for capability length/offset

When parsing server capabilities, we use "int" to store lengths and
offsets. At first glance this seems like a spot where our parser may be
confused by integer overflow if somebody sent us a malicious response.

In practice these strings are all bounded by the 64k limit of a
pkt-line, so using "int" is OK. However, it makes the code simpler to
audit if they just use size_t everywhere. Note that because we take
these parameters as pointers, this also forces many callers to update
their declared types.

Signed-off-by: Jeff King <peff@peff.net>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
builtin/receive-pack.c diff | blob | blame | history
connect.c diff | blob | blame | history
connect.h diff | blob | blame | history
fetch-pack.c diff | blob | blame | history
send-pack.c diff | blob | blame | history
transport.c diff | blob | blame | history
upload-pack.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.