nss-pam-ldapd commit: r1351 - nss-pam-ldapd-solaris/nss

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Commits of the nss-pam-ldapd project <nss-pam-ldapd-commits [at] lists.arthurdejong.org>
To: nss-pam-ldapd-commits [at] lists.arthurdejong.org
Reply-to: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: nss-pam-ldapd commit: r1351 - nss-pam-ldapd-solaris/nss
Date: Thu, 30 Dec 2010 13:24:47 +0100 (CET)

Author: arthur
Date: Thu Dec 30 13:24:46 2010
New Revision: 1351
URL: http://arthurdejong.org/viewvc/nss-pam-ldapd?view=rev&revision=1351

Log:
implement buffer checking and simplify code somewhat

Modified:
   nss-pam-ldapd-solaris/nss/ethers.c
   nss-pam-ldapd-solaris/nss/group.c

Modified: nss-pam-ldapd-solaris/nss/ethers.c
==============================================================================
--- nss-pam-ldapd-solaris/nss/ethers.c  Thu Dec 30 13:09:10 2010        (r1350)
+++ nss-pam-ldapd-solaris/nss/ethers.c  Thu Dec 30 13:24:46 2010        (r1351)
@@ -100,28 +100,26 @@
 
 static nss_status_t read_etherstring(TFILE *fp,nss_XbyY_args_t *args)
 {
-  /* TODO: padl uses struct ether, verify */
   struct etherent result;
   nss_status_t retv;
   char *buffer;
-  size_t buflen;
-  /* read the etherent */
-  
retv=read_etherent(fp,&result,NSS_ARGS(args)->buf.buffer,args->buf.buflen,&errno);
+  int res;
+  /* read the etherent into a temporary buffer */
+  buffer=(char *)malloc(args->buf.buflen);
+  if (buffer==NULL)
+    return NSS_STATUS_UNAVAIL;
+  retv=read_etherent(fp,&result,buffer,args->buf.buflen,&errno);
   if (retv!=NSS_STATUS_SUCCESS)
+  {
+    free(buffer);
     return retv;
-  /* allocate a temporary buffer */
-  buflen=args->buf.buflen;
-  buffer=(char *)malloc(buflen);
-  /* build the formatted string */
-  /* FIXME: implement proper buffer size checking */
-  /* TODO: OpenSolaris expects "<macAddress> <host>" */
-  /* This output is handled correctly by NSCD,but not */
-  /* when NSCD is off. Not an issue with NSS_LDAP,but */
-  /* with the frontend. */
-  sprintf(buffer,"%s %s",ether_ntoa(&result.e_addr),result.e_name);
-  /* copy the result back to the result buffer and free the temporary one */
-  strcpy(NSS_ARGS(args)->buf.buffer,buffer);
+  }
+  /* make a string representation */
+  res=snprintf(args->buf.buffer,args->buf.buflen,
+               "%s %s",ether_ntoa(&result.e_addr),result.e_name);
   free(buffer);
+  if ((res<0)||(res>=args->buf.buflen))
+    return NSS_STATUS_TRYAGAIN;
   NSS_ARGS(args)->returnval=NSS_ARGS(args)->buf.buffer;
   NSS_ARGS(args)->returnlen=strlen(NSS_ARGS(args)->buf.buffer);
   return NSS_STATUS_SUCCESS;

Modified: nss-pam-ldapd-solaris/nss/group.c
==============================================================================
--- nss-pam-ldapd-solaris/nss/group.c   Thu Dec 30 13:09:10 2010        (r1350)
+++ nss-pam-ldapd-solaris/nss/group.c   Thu Dec 30 13:24:46 2010        (r1351)
@@ -192,26 +192,31 @@
   char *buffer;
   size_t buflen;
   int i;
-  /* read the groupent */
-  
retv=read_group(fp,&result,NSS_ARGS(args)->buf.buffer,args->buf.buflen,&errno);
+  /* read the group into a temporary buffer */
+  buffer=(char *)malloc(args->buf.buflen);
+  if (buffer==NULL)
+    return NSS_STATUS_UNAVAIL;
+  retv=read_group(fp,&result,buffer,args->buf.buflen,&errno);
   if (retv!=NSS_STATUS_SUCCESS)
+  {
+    free(buffer);
     return retv;
-  /* allocate a temporary buffer */
-  buflen=args->buf.buflen;
-  buffer=(char *)malloc(buflen);
-  /* build the formatted string */
-  /* FIXME: implement proper buffer size checking */
-  
sprintf(buffer,"%s:%s:%d:",result.gr_name,result.gr_passwd,(int)result.gr_gid);
+  }
+  /* make a string representation */
+  snprintf(args->buf.buffer,args->buf.buflen,
+           "%s:%s:%d:",result.gr_name,result.gr_passwd,(int)result.gr_gid);
+  args->buf.buffer[args->buf.buflen-1]='\0';
   if (result.gr_mem)
     for (i=0;result.gr_mem[i];i++)
     {
       if (i)
-        strcat(buffer,",");
-      strcat(buffer,result.gr_mem[i]);
+        
strncat(args->buf.buffer,args->buf.buflen-strlen(args->buf.buffer)-1,",");
+      
strncat(args->buf.buffer,args->buf.buflen-strlen(args->buf.buffer)-1,result.gr_mem[i]);
     }
-  /* copy the result back to the result buffer and free the temporary one */
-  strcpy(NSS_ARGS(args)->buf.buffer,buffer);
   free(buffer);
+  /* check if buffer overflowed */
+  if (strlen(args->buf.buffer)>=args->buf.buffer-1)
+    return NSS_STATUS_TRYAGAIN;
   NSS_ARGS(args)->returnval=NSS_ARGS(args)->buf.buffer;
   NSS_ARGS(args)->returnlen=strlen(NSS_ARGS(args)->buf.buffer);
   return NSS_STATUS_SUCCESS;
--
To unsubscribe send an email to
nss-pam-ldapd-commits-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-commits

nss-pam-ldapd commit: r1351 - nss-pam-ldapd-solaris/nss, Commits of the nss-pam-ldapd project

Prev by Date: nss-pam-ldapd commit: r1350 - nss-pam-ldapd-solaris/nss
Next by Date: nss-pam-ldapd commit: r1352 - nss-pam-ldapd-solaris/nss
Previous by thread: nss-pam-ldapd commit: r1350 - nss-pam-ldapd-solaris/nss
Next by thread: nss-pam-ldapd commit: r1352 - nss-pam-ldapd-solaris/nss