Fix a 1 byte overflow in r2cmd and improve logic checks ##crash
Some checks failed
build / macos-acr (arm64, 13) (push) Waiting to run
build / macos-acr (x86_64, 12) (push) Waiting to run
build / ios (cydia32) (push) Waiting to run
build / ios (true, cydia) (push) Waiting to run
build / w32-meson (push) Waiting to run
build / w64-static-2022 (push) Waiting to run
build / w64-static (push) Waiting to run
build / w64-meson (push) Waiting to run
build / check_release (push) Blocked by required conditions
build / release (push) Blocked by required conditions
build / linux-wasi (push) Failing after 0s
CI / macos-test (push) Waiting to run
CI / macos-rpath (push) Waiting to run
CI / w64-make (push) Waiting to run
build / linux-wasi-api (push) Failing after 0s
build / linux-csnext (push) Failing after 0s
build / tarball (push) Failing after 0s
build / linux-static (push) Failing after 0s
build / check_abi_compatibility (push) Has been skipped
build / linux-acr-rpm-64 (push) Failing after 0s
build / linux-acr-deb (amd64) (push) Failing after 0s
build / linux-acr-deb (arm64, aarch64-linux-gnu) (push) Failing after 0s
build / linux-acr-deb (i386, multilib) (push) Failing after 0s
build / android-acr (16, arm) (push) Failing after 0s
build / android-acr (aarch64) (push) Failing after 0s
build / android-meson (x86_64) (push) Has been skipped
CI / linux-acr-oldlibsbug (push) Failing after 0s
CI / linux-nocs (push) Failing after 0s
CI / linux-acr-gperf (push) Failing after 0s
CI / linux-sys-capstone (push) Failing after 0s
CI / linux-acr-resymlink (push) Failing after 0s
CI / linux-test (push) Failing after 0s
CI / linux-static-meson (push) Failing after 0s
CI / linux-rpath (push) Failing after 0s
CI / linux-meson-spaces (push) Failing after 0s
CI / linux-tinyasan-fuzz (push) Failing after 0s
CI / linux-asan-fuzz (push) Failing after 0s
CI / w32-mingw (push) Failing after 0s
CI / w64-mingw (push) Failing after 0s
Code scanning - action / CodeQL-Build (push) Failing after 0s
Coverity Scan / latest (push) Failing after 0s
tcc / ubuntu-tcc-newabi (push) Failing after 0s
tcc / ubuntu-tcc-test (push) Failing after 0s
tcc / ubuntu-tcc-nodbg (push) Failing after 0s
tcc / r2pm-tcc (push) Failing after 0s
tcc / ubuntu-tcc-syslibs (push) Failing after 0s

This commit is contained in:
pancake 2024-09-13 17:54:09 +02:00 committed by GitHub
parent 2f4f8edda6
commit 245779383e
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 26 additions and 30 deletions

View File

@ -1,4 +1,4 @@
/* radare - LGPL - Copyright 2009-2023 - pancake */ /* radare - LGPL - Copyright 2009-2024 - pancake */
#include <r_main.h> #include <r_main.h>
@ -43,38 +43,39 @@ void r2_asmjs_openurl(void *kore, const char *url) {
} }
} }
#else #else
#ifndef STDOUT_FILENO
#define STDOUT_FILENO 1
#endif
static void r2cmd(int in, int out, const char *cmd) { static void r2cmd(int in, int out, const char *cmd) {
size_t cmd_len = strlen (cmd) + 1; int cmd_len = strlen (cmd) + 1;
if (write (out, cmd, cmd_len) != cmd_len) { if ((int)write (out, cmd, cmd_len) != cmd_len) {
return; return;
} }
#if 0
if (write (out, "\n", 1) != 1) { if (write (out, "\n", 1) != 1) {
return; return;
} }
int bufsz = (1024 * 64); #endif
unsigned char *buf = malloc (bufsz); int bufsz = (1024 * 64) - 1;
if (!buf) { ut8 *buf = malloc (bufsz + 1);
if (R_UNLIKELY (!buf)) {
return; return;
} }
while (1) { int n = read (in, buf, bufsz);
int n = read (in, buf, bufsz); if (R_LIKELY (n > 0)) {
if (n < 1) { buf[R_MIN (n, bufsz)] = 0;
break;
}
buf[n] = '\0';
buf[bufsz - 1] = '\0';
int len = strlen ((const char *)buf); int len = strlen ((const char *)buf);
n = len; if (len > 0) {
if (n < 1) { n = write (STDOUT_FILENO, buf, len);
break; if (n != len) {
} R_LOG_ERROR ("Truncated output");
n = write (1, buf, n); }
if (n != bufsz) {
break;
} }
} }
free (buf); free (buf);
write (1, "\n", 1); write (STDOUT_FILENO, "\n", 1);
} }
static int r_main_r2pipe(int argc, const char **argv) { static int r_main_r2pipe(int argc, const char **argv) {

View File

@ -2,6 +2,7 @@
// By Nadia Heninger and J. Alex Halderman // By Nadia Heninger and J. Alex Halderman
// Contribution to r2 by @santitox // Contribution to r2 by @santitox
// Integrated and refactored by jvoisin and spelissier // Integrated and refactored by jvoisin and spelissier
// Updated by Sylvain Pelissier 2024
#include <r_search.h> #include <r_search.h>
#include <r_crypto/r_ed25519.h> #include <r_crypto/r_ed25519.h>
@ -68,6 +69,7 @@ static int check_fields(const ut8 *start) {
// As defined in RFC 3447 for RSA, as defined in RFC 5915 for // As defined in RFC 3447 for RSA, as defined in RFC 5915 for
// elliptic curves and as defined in 7 of RFC 8410 for SafeCurves // elliptic curves and as defined in 7 of RFC 8410 for SafeCurves
R_IPI int search_asn1_privkey_update(RSearch *s, ut64 from, const ut8 *buf, int len) { R_IPI int search_asn1_privkey_update(RSearch *s, ut64 from, const ut8 *buf, int len) {
R_RETURN_VAL_IF_FAIL (s && buf, -1);
int i, k, max, index, t; int i, k, max, index, t;
RListIter *iter; RListIter *iter;
RSearchKeyword *kw; RSearchKeyword *kw;
@ -120,16 +122,9 @@ R_IPI int search_asn1_privkey_update(RSearch *s, ut64 from, const ut8 *buf, int
return -1; return -1;
} }
static inline void hexprint(const ut8 *data, int len) {
int i = 0;
for (i = 0; i < len; i++) {
r_cons_printf ("%02x", data[i]);
}
r_cons_newline ();
}
// Finds and return index of a private key matching a given public key. // Finds and return index of a private key matching a given public key.
R_IPI int search_raw_privkey_update(RSearch *s, ut64 from, const ut8 *buf, int len) { R_IPI int search_raw_privkey_update(RSearch *s, ut64 from, const ut8 *buf, int len) {
R_RETURN_VAL_IF_FAIL (s && buf, -1);
int t, i; int t, i;
RSearchKeyword *kw; RSearchKeyword *kw;
RListIter *iter; RListIter *iter;
@ -156,4 +151,4 @@ R_IPI int search_raw_privkey_update(RSearch *s, ut64 from, const ut8 *buf, int l
} }
} }
return -1; return -1;
} }