Mastodon Feed
Boosted by jsonstein@masto.deoan.org ("Jeff Sonstein"):
cliffle@hachyderm.io wrote:
@jmc Ah, so you did, yes.
The Illumos tar appears to be a direct textual descendant of the V7 code, which shouldn't be a surprise, I guess. I'm amused to see the legacy of the signedness checksum bug in here. 🙂
There's, uh, kind of a lot of sprintf in here. Several of the V7 tar self-stomp bugs were sprintf related. It'd be interesting to check the bounds conditions on these.
(Since for reasons I've never understood the Illumos code is hard to find in search engines, tar is here for anyone following along: https://github.com/illumos/illumos-gate/blob/master/usr/src/cmd/tar/tar.c )