[Spread-cvs] cvs commit: spread/daemon Readme.txt sp.c
jonathan at spread.org
jonathan at spread.org
Mon Feb 2 16:36:46 EST 2004
jonathan 04/02/02 16:36:46
Modified: daemon Readme.txt sp.c
Log:
Zero head_buf buffer in SP_internal_multicast before using. Reported by
Panagiotis Kougiouris.
Revision Changes Path
1.43 +2 -0 spread/daemon/Readme.txt
Index: Readme.txt
===================================================================
RCS file: /storage/cvsroot/spread/daemon/Readme.txt,v
retrieving revision 1.42
retrieving revision 1.43
diff -u -r1.42 -r1.43
--- Readme.txt 26 Jan 2004 21:05:18 -0000 1.42
+++ Readme.txt 2 Feb 2004 21:36:46 -0000 1.43
@@ -67,6 +67,8 @@
*) Verify daemon names in spread.conf are unique. If non-unique names are
provided in spread.conf, configuration will be rejected and daemon will
not start. Suggested by Tim Peters.
+*) Zero buffer in c library before sending multicast.
+ Reported by Panagiotis Kougiouris.
June 20, 2003 Ver 3.17.1
----------------------------
1.9 +3 -0 spread/daemon/sp.c
Index: sp.c
===================================================================
RCS file: /storage/cvsroot/spread/daemon/sp.c,v
retrieving revision 1.8
retrieving revision 1.9
diff -u -r1.8 -r1.9
--- sp.c 12 Nov 2003 22:11:03 -0000 1.8
+++ sp.c 2 Feb 2004 21:36:46 -0000 1.9
@@ -1009,6 +1009,9 @@
int i;
int ret;
+ /* zero head_buf to avoid information leakage */
+ memset( head_buf, 0, sizeof(message_header) + MAX_GROUP_NAME*num_groups );
+
Mutex_lock( &Struct_mutex );
ses = SP_get_session( mbox );
More information about the Spread-cvs
mailing list