[Nbd] [PATCH v2 2/6] server: Fix botched strlen computation of error message

To: nbd-general@lists.sourceforge.net
Subject: [Nbd] [PATCH v2 2/6] server: Fix botched strlen computation of error message
From: Eric Blake <eblake@...696...>
Date: Mon, 17 Oct 2016 15:23:36 -0500
Message-id: <1476735820-17208-3-git-send-email-eblake@...696...>
In-reply-to: <1476735820-17208-1-git-send-email-eblake@...696...>
References: <1476735820-17208-1-git-send-email-eblake@...696...>

Commit 3b80382 tried to make it easy for the server to send an
error message whose length was determined by strlen(), but ended
up sending a length of UINT32_MAX, causing clients to either
hang up (reply too large) or wait for nearly 4G of data that was
never coming.

Signed-off-by: Eric Blake <eblake@...696...>
---
 nbd-server.c | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/nbd-server.c b/nbd-server.c
index 25c335b..d0c6fa6 100644
--- a/nbd-server.c
+++ b/nbd-server.c
@@ -1321,11 +1321,12 @@ static void send_reply(CLIENT* client, uint32_t opt, uint32_t reply_type, ssize_
 		htonl(reply_type),
 		htonl(datasize),
 	};
+	if(datasize < 0) {
+		datasize = strlen((char*)data);
+		header.datasize = htonl(datasize);
+	}
 	socket_write(client, &header, sizeof(header));
 	if(datasize != 0) {
-		if(datasize < 0) {
-			datasize = strlen((char*)data);
-		}
 		socket_write(client, data, datasize);
 	}
 }
-- 
2.7.4

Reply to:

References:
- [Nbd] [PATCH v2 0/6] build and server bug fixes
  - From: Eric Blake <eblake@...696...>

Prev by Date: [Nbd] [PATCH v2 1/6] build: Silence autogen.sh warnings
Next by Date: [Nbd] [PATCH v2 3/6] server: Swap argument order in consume()
Previous by thread: Re: [Nbd] [PATCH v2 1/6] build: Silence autogen.sh warnings
Next by thread: [Nbd] [PATCH v2 3/6] server: Swap argument order in consume()
Index(es):
- Date
- Thread