repo_arch: limit the package entry size

mlschroe · mlschroe · commit 39324fcf28f6 · 2025-08-05T11:57:14.000+02:00
diff --git a/ext/repo_arch.c b/ext/repo_arch.c
@@ -23,6 +23,8 @@
 #include "tarhead.h"
 #include "repo_arch.h"
 
+#define MAX_ENTRY_SIZE        0x1000000
+
 static Offset
 adddep(Repo *repo, Offset olddeps, char *line)
 {
@@ -98,7 +100,7 @@ repo_add_arch_pkg(Repo *repo, const char *fn, int flags)
   tarhead_init(&th, fp);
   while (tarhead_next(&th) > 0)
     {
-      if (th.type != 1 || strcmp(th.path, ".PKGINFO") != 0)
+      if (th.type != 1 || strcmp(th.path, ".PKGINFO") != 0 || th.length > MAX_ENTRY_SIZE)
 	{
           tarhead_skip(&th);
 	  continue;
@@ -467,7 +469,7 @@ repo_add_arch_repo(Repo *repo, FILE *fp, int flags)
   while (tarhead_next(&th) > 0)
     {
       char *bn;
-      if (th.type != 1)
+      if (th.type != 1 || th.length > MAX_ENTRY_SIZE)
 	{
           tarhead_skip(&th);
 	  continue;

Original file line number	Diff line number	Diff line change
`@@ -23,6 +23,8 @@`
`23`	`23`	`#include "tarhead.h"`
`24`	`24`	`#include "repo_arch.h"`
`25`	`25`
	`26`	`+#define MAX_ENTRY_SIZE 0x1000000`
	`27`	`+`
`26`	`28`	`static Offset`
`27`	`29`	`adddep(Repo repo, Offset olddeps, char line)`
`28`	`30`	`{`
`@@ -98,7 +100,7 @@ repo_add_arch_pkg(Repo repo, const char fn, int flags)`
`98`	`100`	`tarhead_init(&th, fp);`
`99`	`101`	`while (tarhead_next(&th) > 0)`
`100`	`102`	`{`
`101`		`- if (th.type != 1 \|\| strcmp(th.path, ".PKGINFO") != 0)`
	`103`	`+ if (th.type != 1 \|\| strcmp(th.path, ".PKGINFO") != 0 \|\| th.length > MAX_ENTRY_SIZE)`
`102`	`104`	`{`
`103`	`105`	`tarhead_skip(&th);`
`104`	`106`	`continue;`
`@@ -467,7 +469,7 @@ repo_add_arch_repo(Repo repo, FILE fp, int flags)`
`467`	`469`	`while (tarhead_next(&th) > 0)`
`468`	`470`	`{`
`469`	`471`	`char *bn;`
`470`		`- if (th.type != 1)`
	`472`	`+ if (th.type != 1 \|\| th.length > MAX_ENTRY_SIZE)`
`471`	`473`	`{`
`472`	`474`	`tarhead_skip(&th);`
`473`	`475`	`continue;`