Marek Marczykowski-Górecki
b12f1539a4
Add -Wextra -Werror to all C code
...
Not only the security-critical one.
2014-02-16 11:10:38 +01:00
Marek Marczykowski-Górecki
12a9049cfe
Fix some more -Wextra warnings
2014-02-16 11:10:31 +01:00
Vincent Penquerc'h
03c9cb1388
Add a few consts where appropriate
2014-02-16 11:08:22 +01:00
Vincent Penquerc'h
9f3a74fd77
unpack: prevent ability to bypass the byte limit
...
By passing an empty file with a declared negative size,
a hostile VM can decrease the total bytes counter, while
not have do supply a huge amount of data, thus disabing
the byte size check, and potentially filling the target
filesystem.
2014-02-15 14:14:20 +01:00
Davíð Steinn Geirsson
b95e80779e
archlinux: Fix missing symlink for archlinux template build
2014-02-15 08:32:31 +01:00
Marek Marczykowski-Górecki
c3f924373a
version 2.0.6
2014-02-07 05:42:52 +01:00
Marek Marczykowski-Górecki
f6ec5e1d8a
Merge branch 'appicons'
...
Conflicts:
rpm_spec/qubes-utils.spec
2014-02-07 05:40:51 +01:00
Marek Marczykowski-Górecki
312637358e
version 2.0.5
2014-02-07 05:38:30 +01:00
Marek Marczykowski-Górecki
759c9da6be
rpm: fix debuginfo package build
2014-02-07 05:31:46 +01:00
Marek Marczykowski-Górecki
20cb2103e5
rpm: package libraries in -libs package
...
There are need for both compiling (where main package is unwanted) and
using (where devel package is unnecessary).
2014-02-07 05:30:47 +01:00
Marek Marczykowski-Górecki
516815a266
qrexec-lib: make it shared library
2014-02-07 05:29:59 +01:00
Marek Marczykowski-Górecki
113826aa1a
qrexec-lib: use registered callbacks
...
...instead of exported symbols of certain name. This is first step to
use change it to shared libraries.
2014-02-07 05:27:29 +01:00
Marek Marczykowski-Górecki
1c6f44d7fa
qrexec-lib: fix compile warnings
2014-02-07 05:26:52 +01:00
Marek Marczykowski-Górecki
be74125d40
udev: hide internal drives from file-selection dialogs
2014-02-07 05:26:52 +01:00
Marek Marczykowski-Górecki
b792a47df4
Merge remote-tracking branch 'woju/master' into appicons
2014-01-31 02:06:21 +01:00
Wojciech Zygmunt Porczyk
d8f3c64b5d
imgconverter: error in spec
2014-01-30 17:22:48 +01:00
Wojciech Zygmunt Porczyk
98b7c2f99b
appicons: require ImageMagick
2014-01-30 16:31:43 +01:00
Joanna Rutkowska
341edffaa6
Merge branch 'master' of git://git.qubes-os.org/marmarek/linux-utils
2014-01-23 13:43:32 +01:00
Olivier MEDOC
c34f4c3495
archlinux: updated PKGBUILD scripts based on the rpm spec files
2014-01-23 07:03:51 +01:00
Marek Marczykowski-Górecki
987611683f
version 2.0.4
2014-01-22 15:11:26 +01:00
Vincent Penquerc'h
f7e943f7ec
txrx-vchan: guard against invalid buffer sizes from libvchan
...
These APIs can now return -1 when invalid indices are detected.
2014-01-21 20:57:20 +01:00
Wojciech Porczyk
59fb8daa03
site-packages/qubes/imgconverter.py
...
This module does three things:
- secure image transfer protocol between VMs
- icon tinting for appmenus
- generic icon (padlock) generation
2014-01-14 16:04:03 +01:00
Marek Marczykowski-Górecki
b51435c903
udev: add locking on block device processing
...
xenstored does handle concurrent writes very harshly - it aborts the
whole transaction if any other write happened the same time. For udev
(which process all the events almost at once) it means hundreds of
retries and in some times even exceed udev timeout (60s or so).
To prevent this problem, add locking to allow only one such event being
processed at once. It looks like it should slow down the system startup,
but actually it does otherwise.
2014-01-13 05:01:56 +01:00
Marek Marczykowski-Górecki
e2c481516e
version 2.0.3
2014-01-07 00:44:23 +01:00
Marek Marczykowski-Górecki
e36f03db2d
unix-server: do not check for unlink() error when creating socket
...
The socket most likely do not exists yet.
2014-01-07 00:27:57 +01:00
Marek Marczykowski-Górecki
c2af41b6b6
version 2.0.2
2014-01-06 17:53:12 +01:00
Vincent Penquerc'h
a2e4f9a8aa
ioall: do not reset file flags when they're already as requested
...
This was changed on a copy of that file elsewhere, might as well
keep this in sync too.
2014-01-06 14:40:57 +01:00
Vincent Penquerc'h
3a39c65e3e
linux-utils: misc const/prototype fixups
2014-01-06 14:40:57 +01:00
Vincent Penquerc'h
af78e8d9e8
unpack: count directory and symlink sizes
...
Also do not rely on unpack being called just once if we don't
have to and initialize counts.
Since we don't know directory size before populating with files,
we just accumulate the size on the second pass, but do not actually
check for the limit being reached. If there's any file after that,
that'll trip the check.
2014-01-06 14:40:57 +01:00
Vincent Penquerc'h
77d34c3096
unix-server: guard against buffer overflow
...
sun_path is fairly small, and while the input is a smaller constant,
you never know how that might change.
2014-01-06 14:40:56 +01:00
Vincent Penquerc'h
21154a3e6b
unix-server: some error checking
2014-01-06 14:40:56 +01:00
Vincent Penquerc'h
9192aa041d
buffer.c: guard against bad input
...
The byte limit would be hit if adding one byte to a buffer
that's half the limit, due to the temporary double copy.
Not sure if that's something that's worth changing.
2014-01-06 14:40:56 +01:00
Vincent Penquerc'h
7f2ac22d49
meminfo-writer: fix high memory check for more than about 150 GB RAM
2014-01-05 05:39:30 +01:00
Vincent Penquerc'h
e6c29bbae1
meminfo-writer: ensure we do not write outside our buffer
...
Reading the max size would cause a NUL to be written after
the buffer, while an error would cause one to be written
before it.
2014-01-05 05:39:30 +01:00
Vincent Penquerc'h
2758d2a1d3
meminfo-writer: kill child if we error out due to failure to write the pid file
2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
1a72505d24
meminfo-writer: simple command line sanity checks
2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
0c718b7f54
meminfo-writer: trivial typo fix
2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
76afc2e72f
meminfo-writer: ensure we always use the first parses memory info
...
It could plausibly be ignored for stupidly large thresholds
2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
7e086970e9
meminfo-writer: make meminfo parsing more robust
...
- ensure we see all the expected fields
- avoid overflowing name buffer on malformed input
- avoid possible overread when the last line is small
2014-01-05 05:39:29 +01:00
Vincent Penquerc'h
2ba46ff17f
meminfo-writer: make buffers const where possible
2014-01-05 05:39:29 +01:00
Marek Marczykowski-Górecki
f0b1271a5e
Include meminfo-writer
...
It is common for dom0 and VM, so keep in one place for both of them.
2014-01-05 05:32:57 +01:00
Joanna Rutkowska
5afa710f21
version 2.0.1
2013-12-04 16:02:24 +01:00
Olivier MEDOC
8cb51d76c9
archlinux: allow static libraries to be packaged
2013-12-03 18:06:01 +01:00
Joanna Rutkowska
f00c5acb98
version 1.3.2
2013-11-16 15:28:24 +01:00
Marek Marczykowski-Górecki
21612bfadf
qrexec-lib: add support for verbose mode (echo just processed file)
2013-11-13 10:35:47 +01:00
Marek Marczykowski-Górecki
761305bc8b
qrexec-lib: check files limit before processing the file
...
Off-by-one error.
2013-11-13 10:35:23 +01:00
Joanna Rutkowska
05092fb3e6
version 1.3.1
2013-11-02 12:59:23 -04:00
Marek Marczykowski-Górecki
2ee40f16c2
qrexec-lib: fail peer_client_init call when domain dies
...
Don't wait indefinitely.
2013-10-27 16:06:26 +01:00
Marek Marczykowski-Górecki
2739340559
qrexec-lib: fix memory leak
...
If xs_read returns pointer to empty string (len==0), then it was leaked.
2013-10-27 16:05:32 +01:00
Marek Marczykowski-Górecki
c3ef1acb1a
Merge branch 'master' of git://git.qubes-os.org/joanna/linux-utils
...
Conflicts:
version
2013-10-11 12:56:58 +02:00