Commit f7c3f6cc by Patrick Steinhardt

smart_pkt: return parsed length via out-parameter

The `parse_len` function currently directly returns the parsed length of
a packet line or an error code in case there was an error. Instead,
convert this to our usual style of using the return value as error code
only and returning the actual value via an out-parameter. Thus, we can
now convert the output parameter to an unsigned type, as the size of a
packet cannot ever be negative.

While at it, we also move the check whether the input buffer is long
enough into `parse_len` itself. We don't really want to pass around
potentially non-NUL-terminated buffers to functions without also passing
along the length, as this is dangerous in the unlikely case where other
callers for that function get added. Note that we need to make sure
though to not mess with `GIT_EBUFS` error codes, as these indicate not
an error to the caller but that he needs to fetch more data.

(cherry picked from commit c05790a8)
parent 7e3cd611
...@@ -363,13 +363,17 @@ static int unpack_pkt(git_pkt **out, const char *line, size_t len) ...@@ -363,13 +363,17 @@ static int unpack_pkt(git_pkt **out, const char *line, size_t len)
return 0; return 0;
} }
static int32_t parse_len(const char *line) static int parse_len(size_t *out, const char *line, size_t linelen)
{ {
char num[PKT_LEN_SIZE + 1]; char num[PKT_LEN_SIZE + 1];
int i, k, error; int i, k, error;
int32_t len; int32_t len;
const char *num_end; const char *num_end;
/* Not even enough for the length */
if (linelen < PKT_LEN_SIZE)
return GIT_EBUFS;
memcpy(num, line, PKT_LEN_SIZE); memcpy(num, line, PKT_LEN_SIZE);
num[PKT_LEN_SIZE] = '\0'; num[PKT_LEN_SIZE] = '\0';
...@@ -390,7 +394,11 @@ static int32_t parse_len(const char *line) ...@@ -390,7 +394,11 @@ static int32_t parse_len(const char *line)
if ((error = git__strtol32(&len, num, &num_end, 16)) < 0) if ((error = git__strtol32(&len, num, &num_end, 16)) < 0)
return error; return error;
return len; if (len < 0)
return -1;
*out = (size_t) len;
return 0;
} }
/* /*
...@@ -409,26 +417,23 @@ static int32_t parse_len(const char *line) ...@@ -409,26 +417,23 @@ static int32_t parse_len(const char *line)
int git_pkt_parse_line( int git_pkt_parse_line(
git_pkt **pkt, const char **endptr, const char *line, size_t linelen) git_pkt **pkt, const char **endptr, const char *line, size_t linelen)
{ {
int ret; int error;
int32_t len; size_t len;
/* Not even enough for the length */
if (linelen > 0 && linelen < PKT_LEN_SIZE)
return GIT_EBUFS;
len = parse_len(line); if ((error = parse_len(&len, line, linelen)) < 0) {
if (len < 0) {
/* /*
* If we fail to parse the length, it might be because the * If we fail to parse the length, it might be
* server is trying to send us the packfile already. * because the server is trying to send us the
* packfile already or because we do not yet have
* enough data.
*/ */
if (linelen >= 4 && !git__prefixcmp(line, "PACK")) { if (error == GIT_EBUFS)
;
else if (!git__prefixncmp(line, linelen, "PACK"))
giterr_set(GITERR_NET, "unexpected pack file"); giterr_set(GITERR_NET, "unexpected pack file");
} else { else
giterr_set(GITERR_NET, "bad packet length"); giterr_set(GITERR_NET, "bad packet length");
} return error;
return -1;
} }
/* /*
...@@ -465,31 +470,31 @@ int git_pkt_parse_line( ...@@ -465,31 +470,31 @@ int git_pkt_parse_line(
len -= PKT_LEN_SIZE; /* the encoded length includes its own size */ len -= PKT_LEN_SIZE; /* the encoded length includes its own size */
if (*line == GIT_SIDE_BAND_DATA) if (*line == GIT_SIDE_BAND_DATA)
ret = data_pkt(pkt, line, len); error = data_pkt(pkt, line, len);
else if (*line == GIT_SIDE_BAND_PROGRESS) else if (*line == GIT_SIDE_BAND_PROGRESS)
ret = sideband_progress_pkt(pkt, line, len); error = sideband_progress_pkt(pkt, line, len);
else if (*line == GIT_SIDE_BAND_ERROR) else if (*line == GIT_SIDE_BAND_ERROR)
ret = sideband_error_pkt(pkt, line, len); error = sideband_error_pkt(pkt, line, len);
else if (!git__prefixncmp(line, len, "ACK")) else if (!git__prefixncmp(line, len, "ACK"))
ret = ack_pkt(pkt, line, len); error = ack_pkt(pkt, line, len);
else if (!git__prefixncmp(line, len, "NAK")) else if (!git__prefixncmp(line, len, "NAK"))
ret = nak_pkt(pkt); error = nak_pkt(pkt);
else if (!git__prefixncmp(line, len, "ERR")) else if (!git__prefixncmp(line, len, "ERR"))
ret = err_pkt(pkt, line, len); error = err_pkt(pkt, line, len);
else if (*line == '#') else if (*line == '#')
ret = comment_pkt(pkt, line, len); error = comment_pkt(pkt, line, len);
else if (!git__prefixncmp(line, len, "ok")) else if (!git__prefixncmp(line, len, "ok"))
ret = ok_pkt(pkt, line, len); error = ok_pkt(pkt, line, len);
else if (!git__prefixncmp(line, len, "ng")) else if (!git__prefixncmp(line, len, "ng"))
ret = ng_pkt(pkt, line, len); error = ng_pkt(pkt, line, len);
else if (!git__prefixncmp(line, len, "unpack")) else if (!git__prefixncmp(line, len, "unpack"))
ret = unpack_pkt(pkt, line, len); error = unpack_pkt(pkt, line, len);
else else
ret = ref_pkt(pkt, line, len); error = ref_pkt(pkt, line, len);
*endptr = line + len; *endptr = line + len;
return ret; return error;
} }
void git_pkt_free(git_pkt *pkt) void git_pkt_free(git_pkt *pkt)
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment