summaryrefslogtreecommitdiff
path: root/daemon.c
diff options
context:
space:
mode:
authorJeff King <peff@peff.net>2014-06-18 15:47:17 -0400
committerJunio C Hamano <gitster@pobox.com>2014-06-20 10:44:44 -0700
commit21a2d4ada52132e6b0b67f8e28aa4bcda416f7f2 (patch)
treee2a100df98e339beba257ad7254a15a16b51f848 /daemon.c
parentff45c0d4a316d620d118ec628dd8e78597a23321 (diff)
downloadgit-21a2d4ada52132e6b0b67f8e28aa4bcda416f7f2.tar.gz
transport-helper: avoid reading past end-of-string
We detect the "import-marks" capability by looking for that string, but _without_ a trailing space. Then we skip past it using strlen("import-marks "), with a space. So if a remote helper gives us exactly "import-marks", we will read past the end-of-string by one character. This is unlikely to be a problem in practice, because such input is malformed in the first place, and because there is a good chance that the string has an extra NUL terminator one character after the original (because it formerly had a newline in it that we parsed off). We can fix it by using skip_prefix with "import-marks ", with the space. The other form appears to be a typo from a515ebe (transport-helper: implement marks location as capability, 2011-07-16); "import-marks" has never existed without an argument, and it should match the "export-marks" definition above. Speaking of which, we can also use skip_prefix in a few other places while we are in the function. Signed-off-by: Jeff King <peff@peff.net> Signed-off-by: Junio C Hamano <gitster@pobox.com>
Diffstat (limited to 'daemon.c')
0 files changed, 0 insertions, 0 deletions