diff options
| author | Xiang Xiao <xiaoxiang@xiaomi.com> | 2021-05-11 14:40:50 +0800 |
|---|---|---|
| committer | Jakub Jelen <jjelen@redhat.com> | 2021-05-31 21:36:26 +0200 |
| commit | f7369423a48845a607a95ba19c0bf4c8943f111d (patch) | |
| tree | ef4fcf85d68464dce1aaf7048c464e6ce48b4975 | |
| parent | a8a74a70faa54dc9fa58db52bedfd41278a249f4 (diff) | |
| download | libssh-f7369423a48845a607a95ba19c0bf4c8943f111d.tar.gz libssh-f7369423a48845a607a95ba19c0bf4c8943f111d.tar.xz libssh-f7369423a48845a607a95ba19c0bf4c8943f111d.zip | |
agent: Avoid 1KB temporary buffer in agent_talk
Signed-off-by: Xiang Xiao <xiaoxiang@xiaomi.com>
Reviewed-by: Jakub Jelen <jjelen@redhat.com>
Change-Id: I9acffc6deef534659f89ca8ddb0cd60b325aaeb2
| -rw-r--r-- | src/agent.c | 30 |
1 files changed, 14 insertions, 16 deletions
diff --git a/src/agent.c b/src/agent.c index 62b0093e..3bc99a73 100644 --- a/src/agent.c +++ b/src/agent.c @@ -251,7 +251,8 @@ static int agent_decode_reply(struct ssh_session_struct *session, int type) { static int agent_talk(struct ssh_session_struct *session, struct ssh_buffer_struct *request, struct ssh_buffer_struct *reply) { uint32_t len = 0; - uint8_t payload[1024] = {0}; + uint8_t tmpbuf[4]; + uint8_t *payload = tmpbuf; len = ssh_buffer_get_len(request); SSH_LOG(SSH_LOG_TRACE, "Request length: %u", len); @@ -287,21 +288,18 @@ static int agent_talk(struct ssh_session_struct *session, } SSH_LOG(SSH_LOG_TRACE, "Response length: %u", len); - while (len > 0) { - size_t n = len; - if (n > sizeof(payload)) { - n = sizeof(payload); - } - if (atomicio(session->agent, payload, n, 1) != n) { - SSH_LOG(SSH_LOG_WARN, - "Error reading response from authentication socket."); - return -1; - } - if (ssh_buffer_add_data(reply, payload, n) < 0) { - SSH_LOG(SSH_LOG_WARN, "Not enough space"); - return -1; - } - len -= n; + payload = ssh_buffer_allocate(reply, len); + if (payload == NULL) { + SSH_LOG(SSH_LOG_WARN, "Not enough space"); + return -1; + } + + if (atomicio(session->agent, payload, len, 1) != len) { + SSH_LOG(SSH_LOG_WARN, + "Error reading response from authentication socket."); + /* Rollback the unused space */ + ssh_buffer_pass_bytes_end(reply, len); + return -1; } return 0; |