Commit Graph

62 Commits

Author SHA1 Message Date
Marek Marczykowski-Górecki
b12f1539a4 Add -Wextra -Werror to all C code
Not only the security-critical one.
2014-02-16 11:10:38 +01:00
Marek Marczykowski-Górecki
12a9049cfe Fix some more -Wextra warnings 2014-02-16 11:10:31 +01:00
Vincent Penquerc'h
03c9cb1388 Add a few consts where appropriate 2014-02-16 11:08:22 +01:00
Vincent Penquerc'h
9f3a74fd77 unpack: prevent ability to bypass the byte limit
By passing an empty file with a declared negative size,
a hostile VM can decrease the total bytes counter, while
not have do supply a huge amount of data, thus disabing
the byte size check, and potentially filling the target
filesystem.
2014-02-15 14:14:20 +01:00
Davíð Steinn Geirsson
b95e80779e archlinux: Fix missing symlink for archlinux template build 2014-02-15 08:32:31 +01:00
Marek Marczykowski-Górecki
c3f924373a version 2.0.6 2014-02-07 05:42:52 +01:00
Marek Marczykowski-Górecki
f6ec5e1d8a Merge branch 'appicons'
Conflicts:
	rpm_spec/qubes-utils.spec
2014-02-07 05:40:51 +01:00
Marek Marczykowski-Górecki
312637358e version 2.0.5 2014-02-07 05:38:30 +01:00
Marek Marczykowski-Górecki
759c9da6be rpm: fix debuginfo package build 2014-02-07 05:31:46 +01:00
Marek Marczykowski-Górecki
20cb2103e5 rpm: package libraries in -libs package
There are need for both compiling (where main package is unwanted) and
using (where devel package is unnecessary).
2014-02-07 05:30:47 +01:00
Marek Marczykowski-Górecki
516815a266 qrexec-lib: make it shared library 2014-02-07 05:29:59 +01:00
Marek Marczykowski-Górecki
113826aa1a qrexec-lib: use registered callbacks
...instead of exported symbols of certain name. This is first step to
use change it to shared libraries.
2014-02-07 05:27:29 +01:00
Marek Marczykowski-Górecki
1c6f44d7fa qrexec-lib: fix compile warnings 2014-02-07 05:26:52 +01:00
Marek Marczykowski-Górecki
be74125d40 udev: hide internal drives from file-selection dialogs 2014-02-07 05:26:52 +01:00
Marek Marczykowski-Górecki
b792a47df4 Merge remote-tracking branch 'woju/master' into appicons 2014-01-31 02:06:21 +01:00
Wojciech Zygmunt Porczyk
d8f3c64b5d imgconverter: error in spec 2014-01-30 17:22:48 +01:00
Wojciech Zygmunt Porczyk
98b7c2f99b appicons: require ImageMagick 2014-01-30 16:31:43 +01:00
Joanna Rutkowska
341edffaa6 Merge branch 'master' of git://git.qubes-os.org/marmarek/linux-utils 2014-01-23 13:43:32 +01:00
Olivier MEDOC
c34f4c3495 archlinux: updated PKGBUILD scripts based on the rpm spec files 2014-01-23 07:03:51 +01:00
Marek Marczykowski-Górecki
987611683f version 2.0.4 2014-01-22 15:11:26 +01:00
Vincent Penquerc'h
f7e943f7ec txrx-vchan: guard against invalid buffer sizes from libvchan
These APIs can now return -1 when invalid indices are detected.
2014-01-21 20:57:20 +01:00
Wojciech Porczyk
59fb8daa03
site-packages/qubes/imgconverter.py
This module does three things:
- secure image transfer protocol between VMs
- icon tinting for appmenus
- generic icon (padlock) generation
2014-01-14 16:04:03 +01:00
Marek Marczykowski-Górecki
b51435c903 udev: add locking on block device processing
xenstored does handle concurrent writes very harshly - it aborts the
whole transaction if any other write happened the same time. For udev
(which process all the events almost at once) it means hundreds of
retries and in some times even exceed udev timeout (60s or so).
To prevent this problem, add locking to allow only one such event being
processed at once. It looks like it should slow down the system startup,
but actually it does otherwise.
2014-01-13 05:01:56 +01:00
Marek Marczykowski-Górecki
e2c481516e version 2.0.3 2014-01-07 00:44:23 +01:00
Marek Marczykowski-Górecki
e36f03db2d unix-server: do not check for unlink() error when creating socket
The socket most likely do not exists yet.
2014-01-07 00:27:57 +01:00
Marek Marczykowski-Górecki
c2af41b6b6 version 2.0.2 2014-01-06 17:53:12 +01:00
Vincent Penquerc'h
a2e4f9a8aa ioall: do not reset file flags when they're already as requested
This was changed on a copy of that file elsewhere, might as well
keep this in sync too.
2014-01-06 14:40:57 +01:00
Vincent Penquerc'h
3a39c65e3e linux-utils: misc const/prototype fixups 2014-01-06 14:40:57 +01:00
Vincent Penquerc'h
af78e8d9e8 unpack: count directory and symlink sizes
Also do not rely on unpack being called just once if we don't
have to and initialize counts.

Since we don't know directory size before populating with files,
we just accumulate the size on the second pass, but do not actually
check for the limit being reached. If there's any file after that,
that'll trip the check.
2014-01-06 14:40:57 +01:00
Vincent Penquerc'h
77d34c3096 unix-server: guard against buffer overflow
sun_path is fairly small, and while the input is a smaller constant,
you never know how that might change.
2014-01-06 14:40:56 +01:00
Vincent Penquerc'h
21154a3e6b unix-server: some error checking 2014-01-06 14:40:56 +01:00
Vincent Penquerc'h
9192aa041d buffer.c: guard against bad input
The byte limit would be hit if adding one byte to a buffer
that's half the limit, due to the temporary double copy.
Not sure if that's something that's worth changing.
2014-01-06 14:40:56 +01:00
Vincent Penquerc'h
7f2ac22d49 meminfo-writer: fix high memory check for more than about 150 GB RAM 2014-01-05 05:39:30 +01:00
Vincent Penquerc'h
e6c29bbae1 meminfo-writer: ensure we do not write outside our buffer
Reading the max size would cause a NUL to be written after
the buffer, while an error would cause one to be written
before it.
2014-01-05 05:39:30 +01:00
Vincent Penquerc'h
2758d2a1d3 meminfo-writer: kill child if we error out due to failure to write the pid file 2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
1a72505d24 meminfo-writer: simple command line sanity checks 2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
0c718b7f54 meminfo-writer: trivial typo fix 2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
76afc2e72f meminfo-writer: ensure we always use the first parses memory info
It could plausibly be ignored for stupidly large thresholds
2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
7e086970e9 meminfo-writer: make meminfo parsing more robust
- ensure we see all the expected fields
- avoid overflowing name buffer on malformed input
- avoid possible overread when the last line is small
2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
2ba46ff17f meminfo-writer: make buffers const where possible 2014-01-05 05:39:29 +01:00
Marek Marczykowski-Górecki
f0b1271a5e Include meminfo-writer
It is common for dom0 and VM, so keep in one place for both of them.
2014-01-05 05:32:57 +01:00
Joanna Rutkowska
5afa710f21 version 2.0.1 2013-12-04 16:02:24 +01:00
Olivier MEDOC
8cb51d76c9 archlinux: allow static libraries to be packaged 2013-12-03 18:06:01 +01:00
Joanna Rutkowska
f00c5acb98 version 1.3.2 2013-11-16 15:28:24 +01:00
Marek Marczykowski-Górecki
21612bfadf qrexec-lib: add support for verbose mode (echo just processed file) 2013-11-13 10:35:47 +01:00
Marek Marczykowski-Górecki
761305bc8b qrexec-lib: check files limit before processing the file
Off-by-one error.
2013-11-13 10:35:23 +01:00
Joanna Rutkowska
05092fb3e6 version 1.3.1 2013-11-02 12:59:23 -04:00
Marek Marczykowski-Górecki
2ee40f16c2 qrexec-lib: fail peer_client_init call when domain dies
Don't wait indefinitely.
2013-10-27 16:06:26 +01:00
Marek Marczykowski-Górecki
2739340559 qrexec-lib: fix memory leak
If xs_read returns pointer to empty string (len==0), then it was leaked.
2013-10-27 16:05:32 +01:00
Marek Marczykowski-Górecki
c3ef1acb1a Merge branch 'master' of git://git.qubes-os.org/joanna/linux-utils
Conflicts:
	version
2013-10-11 12:56:58 +02:00