Merge pull request #50 from jow-/musl-empty-render-crash

lib: fix potential integer underflow on empty render output
author: Jo-Philipp Wich <jo@mein.io> 2022-03-14 15:30:24 +0100
committer: GitHub <noreply@github.com> 2022-03-14 15:30:24 +0100
commit: 23929951ad4b0ed2bcea793f6bf72d9e4236d3c7 (patch)
tree: 8d50b4e8856fdd992ab690cccad947873016a4db /lib.c
parent: 8fd4746da31b945a6259ac846f7cf8dcfef0b1ef (diff)
parent: 73dcd7837023939063ad89681c8d4e7392a310fe (diff)
1 files changed, 2 insertions, 3 deletions
diff --git a/lib.c b/lib.c
index dc48d84..f715484 100644
--- a/lib.c
+++ b/lib.c
@@ -2194,6 +2194,7 @@ uc_include(uc_vm_t *vm, size_t nargs)
 static uc_value_t *
 uc_render(uc_vm_t *vm, size_t nargs)
 {
+	uc_string_t hdr = { .header = { .type = UC_STRING, .refcount = 1 } };
 	uc_string_t *ustr = NULL;
 	FILE *mem, *prev;
 	size_t len = 0;
@@ -2204,7 +2205,7 @@ uc_render(uc_vm_t *vm, size_t nargs)
 		goto out;
 
 	/* reserve space for uc_string_t header... */
-	if (fseek(mem, sizeof(*ustr), SEEK_SET))
+	if (fwrite(&hdr, 1, sizeof(hdr), mem) != sizeof(hdr))
 		goto out;
 
 	/* divert VM output to memory fd */
@@ -2219,8 +2220,6 @@ uc_render(uc_vm_t *vm, size_t nargs)
 	fclose(mem);
 
 	/* update uc_string_t length */
-	ustr->header.type = UC_STRING;
-	ustr->header.refcount = 1;
 	ustr->length = len - sizeof(*ustr);
 
 	return &ustr->header;
author	Jo-Philipp Wich <jo@mein.io>	2022-03-14 15:30:24 +0100
committer	GitHub <noreply@github.com>	2022-03-14 15:30:24 +0100
commit	23929951ad4b0ed2bcea793f6bf72d9e4236d3c7 (patch)
tree	8d50b4e8856fdd992ab690cccad947873016a4db /lib.c
parent	8fd4746da31b945a6259ac846f7cf8dcfef0b1ef (diff)
parent	73dcd7837023939063ad89681c8d4e7392a310fe (diff)