mirror of
https://github.com/wavetermdev/waveterm.git
synced 2025-01-04 18:59:08 +01:00
Fix code scanning alert no. 50: Size computation for allocation may overflow (#1088)
Fixes [https://github.com/wavetermdev/waveterm/security/code-scanning/50](https://github.com/wavetermdev/waveterm/security/code-scanning/50) To fix the problem, we need to ensure that the size computation for the allocation does not overflow. This can be achieved by validating the length of `barr` before performing the arithmetic operation. We will set a maximum allowable size for `barr` to ensure that the sum of `oscPrefixLen(oscNum)` and `len(barr)` does not exceed the maximum value for an `int`. 1. Define a maximum allowable size for `barr` (e.g., 64 MB). 2. Check the length of `barr` against this maximum size before performing the allocation. 3. If `barr` exceeds the maximum size, return an error. _Suggested fixes powered by Copilot Autofix. Review carefully before merging._ --------- Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
This commit is contained in:
parent
8dbb1f90d2
commit
1fc6dd7c1a
@ -383,7 +383,10 @@ func (bc *BlockController) DoRunShellCommand(rc *RunShellOpts, blockMeta waveobj
|
|||||||
go func() {
|
go func() {
|
||||||
// handles outputCh -> shellInputCh
|
// handles outputCh -> shellInputCh
|
||||||
for msg := range wshProxy.ToRemoteCh {
|
for msg := range wshProxy.ToRemoteCh {
|
||||||
encodedMsg := wshutil.EncodeWaveOSCBytes(wshutil.WaveServerOSC, msg)
|
encodedMsg, err := wshutil.EncodeWaveOSCBytes(wshutil.WaveServerOSC, msg)
|
||||||
|
if err != nil {
|
||||||
|
log.Printf("error encoding OSC message: %v\n", err)
|
||||||
|
}
|
||||||
shellInputCh <- &BlockInputUnion{InputData: encodedMsg}
|
shellInputCh <- &BlockInputUnion{InputData: encodedMsg}
|
||||||
}
|
}
|
||||||
}()
|
}()
|
||||||
|
@ -79,10 +79,12 @@ func AdaptMsgChToPty(outputCh chan []byte, oscEsc string, output io.Writer) erro
|
|||||||
panic("oscEsc must be 5 characters")
|
panic("oscEsc must be 5 characters")
|
||||||
}
|
}
|
||||||
for msg := range outputCh {
|
for msg := range outputCh {
|
||||||
barr := EncodeWaveOSCBytes(oscEsc, msg)
|
barr, err := EncodeWaveOSCBytes(oscEsc, msg)
|
||||||
_, err := output.Write(barr)
|
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return fmt.Errorf("error writing to output: %w", err)
|
return fmt.Errorf("error encoding osc message (AdaptMsgChToPty): %w", err)
|
||||||
|
}
|
||||||
|
if _, err := output.Write(barr); err != nil {
|
||||||
|
return fmt.Errorf("error writing osc message (AdaptMsgChToPty): %w", err)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
return nil
|
return nil
|
||||||
|
@ -67,9 +67,13 @@ func makeOscPrefix(oscNum string) []byte {
|
|||||||
return output
|
return output
|
||||||
}
|
}
|
||||||
|
|
||||||
func EncodeWaveOSCBytes(oscNum string, barr []byte) []byte {
|
func EncodeWaveOSCBytes(oscNum string, barr []byte) ([]byte, error) {
|
||||||
if len(oscNum) != 5 {
|
if len(oscNum) != 5 {
|
||||||
panic("oscNum must be 5 characters")
|
return nil, fmt.Errorf("oscNum must be 5 characters")
|
||||||
|
}
|
||||||
|
const maxSize = 64 * 1024 * 1024 // 64 MB
|
||||||
|
if len(barr) > maxSize {
|
||||||
|
return nil, fmt.Errorf("input data too large")
|
||||||
}
|
}
|
||||||
hasControlChars := false
|
hasControlChars := false
|
||||||
for _, b := range barr {
|
for _, b := range barr {
|
||||||
@ -85,7 +89,7 @@ func EncodeWaveOSCBytes(oscNum string, barr []byte) []byte {
|
|||||||
copyOscPrefix(output, oscNum)
|
copyOscPrefix(output, oscNum)
|
||||||
copy(output[oscPrefixLen(oscNum):], barr)
|
copy(output[oscPrefixLen(oscNum):], barr)
|
||||||
output[len(output)-1] = BEL
|
output[len(output)-1] = BEL
|
||||||
return output
|
return output, nil
|
||||||
}
|
}
|
||||||
|
|
||||||
var buf bytes.Buffer
|
var buf bytes.Buffer
|
||||||
@ -101,7 +105,7 @@ func EncodeWaveOSCBytes(oscNum string, barr []byte) []byte {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
buf.WriteByte(BEL)
|
buf.WriteByte(BEL)
|
||||||
return buf.Bytes()
|
return buf.Bytes(), nil
|
||||||
}
|
}
|
||||||
|
|
||||||
func EncodeWaveOSCMessageEx(oscNum string, msg *RpcMessage) ([]byte, error) {
|
func EncodeWaveOSCMessageEx(oscNum string, msg *RpcMessage) ([]byte, error) {
|
||||||
@ -112,7 +116,7 @@ func EncodeWaveOSCMessageEx(oscNum string, msg *RpcMessage) ([]byte, error) {
|
|||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("error marshalling message to json: %w", err)
|
return nil, fmt.Errorf("error marshalling message to json: %w", err)
|
||||||
}
|
}
|
||||||
return EncodeWaveOSCBytes(oscNum, barr), nil
|
return EncodeWaveOSCBytes(oscNum, barr)
|
||||||
}
|
}
|
||||||
|
|
||||||
var termModeLock = sync.Mutex{}
|
var termModeLock = sync.Mutex{}
|
||||||
@ -194,7 +198,11 @@ func SetupTerminalRpcClient(serverImpl ServerImpl) (*WshRpc, io.Reader) {
|
|||||||
rpcClient := MakeWshRpc(messageCh, outputCh, wshrpc.RpcContext{}, serverImpl)
|
rpcClient := MakeWshRpc(messageCh, outputCh, wshrpc.RpcContext{}, serverImpl)
|
||||||
go func() {
|
go func() {
|
||||||
for msg := range outputCh {
|
for msg := range outputCh {
|
||||||
barr := EncodeWaveOSCBytes(WaveOSC, msg)
|
barr, err := EncodeWaveOSCBytes(WaveOSC, msg)
|
||||||
|
if err != nil {
|
||||||
|
fmt.Fprintf(os.Stderr, "Error encoding OSC message: %v\n", err)
|
||||||
|
continue
|
||||||
|
}
|
||||||
os.Stdout.Write(barr)
|
os.Stdout.Write(barr)
|
||||||
}
|
}
|
||||||
}()
|
}()
|
||||||
|
Loading…
Reference in New Issue
Block a user