1
0
mirror of https://github.com/systemd/systemd.git synced 2024-12-23 21:35:11 +03:00
systemd/test/fuzz/fuzz-bus-message
Zbigniew Jędrzejewski-Szmek 73777ddba5 bus-message: fix skipping of array fields in !gvariant messages
We copied part of the string into a buffer that was off by two.
If the element signature had length one, we'd copy 0 bytes and crash when
looking at the "first" byte. Otherwise, we would crash because strncpy would
not terminate the string.
2018-10-02 11:53:20 +02:00
..
crash-26bba7182dedc8848939931d9fcefcb7922f2e56 bus-message: avoid an infinite loop on empty structures 2018-10-02 11:53:20 +02:00
crash-29ed3c202e0ffade3cad42c8bbeb6cc68a21eb8e bus-message: do not crash on message with a string of zero length 2018-10-02 11:53:20 +02:00
crash-37449529b1ad867f0c2671fa80aca5d7812a2b70 bus-message: fix skipping of array fields in !gvariant messages 2018-10-02 11:53:20 +02:00
crash-b88ad9ecf4aacf4a0caca5b5543953265367f084 Introduce free_and_strndup and use it in bus-message.c 2018-10-02 11:42:45 +02:00
crash-c1b37b4729b42c0c05b23cba4eed5d8102498a1e bus-message: let's always use -EBADMSG when the message is bad 2018-10-02 11:53:20 +02:00
crash-d8f3941c74219b4c03532c9b244d5ea539c61af5 bus-message: fix calculation of offsets table for arrays 2018-10-02 11:53:20 +02:00
crash-e1b811da5ca494e494b77c6bd8e1c2f2989425c5 bus-message: fix calculation of offsets table 2018-10-02 11:53:20 +02:00
leak-c09c0e2256d43bc5e2d02748c8d8760e7bc25d20 sd-bus: unify three code-paths which free struct bus_container 2018-10-02 11:53:20 +02:00
message1 fuzz-bus-message: add fuzzer for message parsing 2018-10-02 11:09:05 +02:00
timeout-08ee8f6446a4064db064e8e0b3d220147f7d0b5b bus-message: avoid an infinite loop on empty structures 2018-10-02 11:53:20 +02:00