thodg/got

Browse

Commit 6eb07a178cf613c9648650b6e16604706c4aede4

Stefan Sperling 2018-11-04T22:09:59

fix imsg limit calculation in got_privsep_send_tree() 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34

diff --git a/lib/privsep.c b/lib/privsep.c
index 24bc13c..2429a94 100644
--- a/lib/privsep.c
+++ b/lib/privsep.c
@@ -627,6 +627,7 @@ got_privsep_send_tree(struct imsgbuf *ibuf, struct got_tree_object *tree)
 	struct got_imsg_tree_object itree;
 	struct got_tree_entry *te;
 	size_t totlen;
+	int nimsg; /* number of imsg queued in ibuf */
 
 	itree.nentries = tree->entries.nentries;
 	if (imsg_compose(ibuf, GOT_IMSG_TREE, 0, 0, -1, &itree, sizeof(itree))
@@ -634,6 +635,7 @@ got_privsep_send_tree(struct imsgbuf *ibuf, struct got_tree_object *tree)
 		return got_error_from_errno();
 
 	totlen = sizeof(itree);
+	nimsg = 1;
 	SIMPLEQ_FOREACH(te, &tree->entries.head, entry) {
 		struct got_imsg_tree_entry ite;
 		uint8_t *buf = NULL;
@@ -642,10 +644,12 @@ got_privsep_send_tree(struct imsgbuf *ibuf, struct got_tree_object *tree)
 		if (len > MAX_IMSGSIZE)
 			return got_error(GOT_ERR_NO_SPACE);
 
-		if (totlen + len >= MAX_IMSGSIZE - IMSG_HEADER_SIZE) {
+		nimsg++;
+		if (totlen + len >= MAX_IMSGSIZE - (IMSG_HEADER_SIZE * nimsg)) {
 			err = flush_imsg(ibuf);
 			if (err)
 				return err;
+			nimsg = 0;
 		}
 
 		buf = malloc(len);
kmx.io     mail     discord kmxgit v0.4.0