codesoap
5d96c2c014
readline_buffer: Avoid consecutive duplicates in the history
2021-01-17 12:58:51 +03:00
moneromooo-monero
c8cd83030c
storages: overridable limits for loading portable_storage from binary
2021-01-08 08:48:00 +03:00
Lee Clagett
fcac2ad95d
Restrict duplicate keys in epee binary format
2021-01-07 09:13:27 +03:00
moneromooo-monero
f8e05b3003
epee: also limit number of strings in portable_storage
...
They require at least 24 bytes
2021-01-07 09:12:33 +03:00
moneromooo-monero
f02e91ef83
add a max levin packet size by command type
2021-01-04 09:46:18 +03:00
moneromooo-monero
9289bd9493
portable_storage: better sanity checking
2021-01-04 09:43:15 +03:00
SChernykh
5de14c44ec
Fixed issues found by static analysis
...
- rolling_median: tried to free uninitialized pointer in a constructor
- net_node.inl: erase-remove idiom was used incorrectly. remove_if doesn't actually remove elements, see http://cpp.sh/6fcjv
- bulletproofs.cc: call to sizeof() instead of vector.size(), luckily it only impacts performance and not code logic there
2021-01-02 11:02:20 +03:00
Lee Clagett
6a2abebb94
Restrict duplicate keys in epee binary format
2021-01-02 10:59:36 +03:00
xiphon
6675069dcf
portable_storage: forbid unnamed sections
2021-01-02 10:59:22 +03:00
moneromooo
6375b913d9
portable_storage: check object limit where appropriate
...
also fix pedantic off by one in check
2021-01-02 10:58:54 +03:00
Lee Clagett
b4206cea5a
Add aggressive restrictions to pre-handshake p2p buffer limit
2021-01-02 10:57:50 +03:00
moneromooo-monero
58404d389c
portable_storage: remove array element limit
...
some people don't want it
2021-01-02 10:57:01 +03:00
anon
1ec6d5ccda
ssl: buffered handshake detection
2021-01-02 10:56:49 +03:00
moneromooo-monero
6de11d0718
epee: fix some issues using connections after shutdown
2021-01-02 10:56:31 +03:00
moneromooo-monero
63381702d8
portable_storage: remove overly aggressive cutoff
2021-01-02 10:56:06 +03:00
moneromooo-monero
a7e3955772
portable_storage: add some sanity checks on data size
...
especially when allocated size is >> serialized data size
2021-01-02 10:55:24 +03:00
Lee Clagett
8088f8d894
Fix byte_stream::put_n
2021-01-02 10:43:02 +03:00
Lee Clagett
0b8bf308ce
Change epee binary output from std::stringstream to byte_stream
2020-12-11 07:46:14 +03:00
Lee Clagett
a3033e741b
Change to more efficient allocation strategy in byte_stream
2020-12-11 07:45:41 +03:00
moneromooo
27cfbe1a22
protocol: drop peers that don't reply to queries
2020-12-09 21:49:04 +03:00
moneromooo
f8ec114820
keep only the last seen node on a given host in the white list
2020-12-09 21:48:53 +03:00
moneromooo-monero
6815ddd270
epee: tighten the URL parsing regexp a little
...
fixes massive amounts of time spent on pathological inputs
Found by OSS-Fuzz
2020-12-04 09:38:42 +03:00
xiphon
711f8c9d34
epee: readline_buffer - fix thread safety, fix sync() after stop()
2020-11-08 00:50:39 +03:00
Lee Clagett
b641e0a2c0
Add clear method to byte_stream
2020-08-17 21:30:34 -04:00
Alexander Blair
43a4fd9e16
Merge pull request #6736
...
05ad4fa39 epee: further defending against exceptions in command handlers (moneromooo-monero)
2020-08-16 12:56:35 -07:00
Alexander Blair
d73b1b6560
Merge pull request #6727
...
13eee1d6a rpc: reject wrong sized txid (moneromooo-monero)
92e6b7df2 easylogging++: fix crash with reentrant logging (moneromooo-monero)
6dd95d530 epee: guard against exceptions in RPC handlers (moneromooo-monero)
90016ad74 blockchain: guard against exceptions in add_new_block/children (moneromooo-monero)
2020-08-16 12:55:25 -07:00
Alexander Blair
7db379cc82
Merge pull request #6720
...
86abf558c epee: Remove unused functions in local_ip.h (Jean Pierre Dudey)
2020-08-16 12:54:17 -07:00
Alexander Blair
10ad0d7eb2
Merge pull request #6718
...
85efc88c1 Fix overflow issue in epee:misc_utils::rolling_median_t and median(), with unit test (koe)
2020-08-16 12:53:50 -07:00
Alexander Blair
01b512f3a9
Merge pull request #6716
...
76c16822d wallet2_api: implement runtime proxy configuration (xiphon)
2020-08-16 12:52:21 -07:00
moneromooo-monero
05ad4fa397
epee: further defending against exceptions in command handlers
2020-08-02 00:22:47 +00:00
moneromooo-monero
6dd95d5308
epee: guard against exceptions in RPC handlers
2020-07-30 22:52:12 +00:00
rbrunner7
fb31167b12
Wallet, daemon: From 'help_advanced' back to 'help', and new 'apropos' command
2020-07-24 07:12:11 +02:00
koe
85efc88c1e
Fix overflow issue in epee:misc_utils::rolling_median_t and median(), with unit test
2020-07-23 03:36:05 -05:00
Jean Pierre Dudey
86abf558cb
epee: Remove unused functions in local_ip.h
...
Signed-off-by: Jean Pierre Dudey <me@jeandudey.tech>
2020-07-22 19:06:01 -05:00
xiphon
76c16822d0
wallet2_api: implement runtime proxy configuration
2020-07-20 13:45:12 +00:00
Alexander Blair
9871fefbf9
Merge pull request #6565
...
72cdfa4a2 fix a few typos in error messages (moneromooo-monero)
2020-07-19 03:40:19 -07:00
Alexander Blair
3ba6c7fd30
Merge pull request #6516
...
8656a8c9f remove double includes (sumogr)
2020-07-19 03:34:28 -07:00
Alexander Blair
a0d179e528
Merge pull request #6512
...
5ef0607da Update copyright year to 2020 (SomaticFanatic)
2020-07-19 03:32:59 -07:00
luigi1111
803f58553b
Merge pull request #6675
...
3721d56 epee: fix array underflow in unicode parsing (moneromooo-monero)
2020-07-08 17:27:53 -05:00
luigi1111
be170c485c
Merge pull request #6584
...
78d435a rpc: don't display invalid json errors on default log level (moneromooo-monero)
2020-07-08 17:12:43 -05:00
luigi1111
35e2520115
Merge pull request #6559
...
15538f7 ByteSlice: Fix persisting ptr to std::moved SSO buffer (Doy-lee)
2020-07-08 17:07:50 -05:00
moneromooo-monero
3721d5688f
epee: fix array underflow in unicode parsing
...
Reported by minerscan
Also independently found by OSS-Fuzz just recently
2020-06-21 18:22:16 +00:00
luigi1111
e27604ff10
Merge pull request #6539
...
85164a8 epee: use memwipe rather than memset for md5 secrets (moneromooo-monero)
2020-06-08 14:09:22 -05:00
luigi1111
967285a9fa
Merge pull request #6522
...
29e563b Fixed bugs for take_slice and byte_stream->byte_slice (vtnerd)
2020-06-08 14:05:05 -05:00
Lee Clagett
7aeb503547
Fix boost <1.60 compilation and fix boost 1.73+ warnings
2020-05-31 21:18:11 -04:00
moneromooo-monero
78d435a5fa
rpc: don't display invalid json errors on default log level
...
It's not something the user needs to know, and will display
attacker controlled data
2020-05-23 12:26:49 +00:00
Doyle
15538f7e3f
ByteSlice: Fix persisting ptr to std::moved SSO buffer
...
The Bug:
1. Construct `byte_slice.portion_` with `epee::span(buffer)` which copies a pointer to the SSO buffer to `byte_slice.portion_`
2. It constructs `byte_slice.storage_` with `std::move(buffer)` (normally this swap pointers, but SSO means a memcpy and clear on the original SSO buffer)
3. `slice.data()` returns a pointer from `slice.portion_` that points to the original SSO cleared buffer, `slice.storage_` has the actual string.
2020-05-20 10:13:58 +10:00
moneromooo-monero
72cdfa4a20
fix a few typos in error messages
...
Reported by adrelanos
2020-05-19 15:59:26 +00:00
moneromooo-monero
85164a8daf
epee: use memwipe rather than memset for md5 secrets
...
That's used by HTTP auth now
2020-05-16 18:12:55 +00:00
selsta
f35ced6d7f
build: fix boost 1.73 compatibility
2020-05-14 22:57:53 +02:00