auth-filter: do not write more than we've read

Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
author: Jason A. Donenfeld 2018-07-14 05:09:27 +0200
committer: Jason A. Donenfeld 2018-07-14 05:09:27 +0200
commit: 93a2c3305190ca87cc1a6c98868c251ef67c3f37 (patch)
tree: 9d38211667459409b313c223086439b01489e440
parent: c3b5b5f648d953307672a4b30e9222787668f708 (diff)
download: cgit-93a2c3305190ca87cc1a6c98868c251ef67c3f37.tar.gz
cgit-93a2c3305190ca87cc1a6c98868c251ef67c3f37.tar.bz2
cgit-93a2c3305190ca87cc1a6c98868c251ef67c3f37.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/cgit.c b/cgit.c
index e2d7891..fda0aa4 100644
--- a/cgit.c
+++ b/cgit.c
@@ -659,13 +659,13 @@ static inline void open_auth_filter(const char *function)
 static inline void authenticate_post(void)
 {
        char buffer[MAX_AUTHENTICATION_POST_BYTES];
-        unsigned int len;
+        ssize_t len;
        open_auth_filter("authenticate-post");
        len = ctx.env.content_length;
        if (len > MAX_AUTHENTICATION_POST_BYTES)
                len = MAX_AUTHENTICATION_POST_BYTES;
-        if (read(STDIN_FILENO, buffer, len) < 0)
+        if ((len = read(STDIN_FILENO, buffer, len)) < 0)
                die_errno("Could not read POST from stdin");
        if (write(STDOUT_FILENO, buffer, len) < 0)
                die_errno("Could not write POST to stdout");
author	Jason A. Donenfeld	2018-07-14 05:09:27 +0200
committer	Jason A. Donenfeld	2018-07-14 05:09:27 +0200
commit	93a2c3305190ca87cc1a6c98868c251ef67c3f37 (patch)
tree	9d38211667459409b313c223086439b01489e440
parent	c3b5b5f648d953307672a4b30e9222787668f708 (diff)
download	cgit-93a2c3305190ca87cc1a6c98868c251ef67c3f37.tar.gz cgit-93a2c3305190ca87cc1a6c98868c251ef67c3f37.tar.bz2 cgit-93a2c3305190ca87cc1a6c98868c251ef67c3f37.zip

diff --git a/cgit.c b/cgit.c index e2d7891..fda0aa4 100644 --- a/cgit.c +++ b/cgit.c
@@ -659,13 +659,13 @@ static inline void open_auth_filter(const char *function)
659	static inline void authenticate_post(void)	659	static inline void authenticate_post(void)
660	{	660	{
661	char buffer[MAX_AUTHENTICATION_POST_BYTES];	661	char buffer[MAX_AUTHENTICATION_POST_BYTES];
662	unsigned int len;	662	ssize_t len;
663		663
664	open_auth_filter("authenticate-post");	664	open_auth_filter("authenticate-post");
665	len = ctx.env.content_length;	665	len = ctx.env.content_length;
666	if (len > MAX_AUTHENTICATION_POST_BYTES)	666	if (len > MAX_AUTHENTICATION_POST_BYTES)
667	len = MAX_AUTHENTICATION_POST_BYTES;	667	len = MAX_AUTHENTICATION_POST_BYTES;
668	if (read(STDIN_FILENO, buffer, len) < 0)	668	if ((len = read(STDIN_FILENO, buffer, len)) < 0)
669	die_errno("Could not read POST from stdin");	669	die_errno("Could not read POST from stdin");
670	if (write(STDOUT_FILENO, buffer, len) < 0)	670	if (write(STDOUT_FILENO, buffer, len) < 0)
671	die_errno("Could not write POST to stdout");	671	die_errno("Could not write POST to stdout");