01: e sys inout - abort on messages more than 1m in size

Carsten Haitzler Wed, 22 Apr 2020 05:09:28 -0700

raster pushed a commit to branch master.

http://git.enlightenment.org/core/enlightenment.git/commit/?id=ac37da41673e70a3ae44246ae1cce67b406b0546


commit ac37da41673e70a3ae44246ae1cce67b406b0546
Author: Carsten Haitzler (Rasterman) <ras...@rasterman.com>
Date:   Wed Apr 22 13:00:55 2020 +0100

    e sys inout - abort on messages more than 1m in size
    
    i never see a need for messages more than 1m in size so lets just
    abort on them to limit abuse
    
    fixes T8677
---
 src/bin/system/e_system_inout.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/bin/system/e_system_inout.c b/src/bin/system/e_system_inout.c
index f4353122c..d7c7a8476 100644
--- a/src/bin/system/e_system_inout.c
+++ b/src/bin/system/e_system_inout.c
@@ -72,6 +72,11 @@ _cb_stdio_in_read(void *data EINA_UNUSED, Ecore_Fd_Handler 
*fd_handler EINA_UNUS
              ERR("Invalid message payload size (less than 0)\n");
              abort();
           }
+        if (head.size > (1024 * 1024))
+          {
+             ERR("Invalid message payload size (more than 1M)\n");
+             abort();
+          }
         buf = NULL;
         if (head.size > 0)
           {

--

[EGIT] [core/enlightenment] master 01/01: e sys inout - abort on messages more than 1m in size

Reply via email to