1
1
mirror of https://github.com/systemd/systemd-stable.git synced 2025-01-11 05:17:44 +03:00
systemd-stable/test/fuzz-regressions
Zbigniew Jędrzejewski-Szmek e3c3d6761b core/load-fragment: reject overly long paths early
No need to go through the specifier_printf() if the path is already too long in
the unexpanded form (since specifiers increase the length of the string in all
practical cases).

In the oss-fuzz test case, valgrind reports:
  total heap usage: 179,044 allocs, 179,044 frees, 72,687,755,703 bytes allocated
and the original config file is ~500kb. This isn't really a security issue,
since the config file has to be trusted any way, but just a matter of
preventing accidental resource exhaustion.

https://oss-fuzz.com/v2/issue/4651449704251392/6977

While at it, fix order of arguments in the neighbouring log_syntax() call.
2018-03-21 00:46:13 +01:00
..
fuzz-dns-packet test: run all fuzz regression tests with all sanitizers 2018-03-14 14:27:04 +01:00
fuzz-unit-file core/load-fragment: reject overly long paths early 2018-03-21 00:46:13 +01:00
.gitattributes Add .gitattributes for test/fuzz-regressions 2018-03-17 09:01:53 +01:00
meson.build core/load-fragment: reject overly long paths early 2018-03-21 00:46:13 +01:00