sanchayanmaity/minix
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

potential buffer overruns in env_* routines

Browse source
This commit is contained in:
David van Moolenbroek 2009-05-10 16:54:37 +00:00
parent e08b38a5c4
commit a2485b346c
4 changed files with 13 additions and 10 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
lib/sysutil/env_get_prm.c
View file

@ -44,7 +44,7 @@ int max_len; /* maximum length of value */
if (argv[i][keylen] != '=')
continue;
key_value= argv[i]+keylen+1;
if (strlen(key_value)+1 > EP_BUF_SIZE)
if (strlen(key_value)+1 > max_len)
return(E2BIG);
strcpy(value, key_value);
return OK;
@ -65,11 +65,14 @@ int max_len; /* maximum length of value */
if ((key_value = find_key(mon_params, key)) == NULL)
return(ESRCH);
/* Value found, make the actual copy (as far as possible). */
strncpy(value, key_value, max_len);
/* See if it fits in the client's buffer. */
/* Value found, see if it fits in the client's buffer. Callers assume that
* their buffer is unchanged on error, so don't make a partial copy.
*/
if ((strlen(key_value)+1) > max_len) return(E2BIG);
/* Make the actual copy. */
strcpy(value, key_value);
return(OK);
}

2
lib/sysutil/env_panic.c
View file

@ -11,7 +11,7 @@ char *key; /* environment variable whose value is bogus */
int s;
if ((s=env_get_param(key, value, sizeof(value))) == 0) {
if (s != ESRCH) /* only error allowed */
printf("WARNING: get_mon_param() failed in env_panic(): %d\n", s);
printf("WARNING: env_get_param() failed in env_panic(): %d\n", s);
}
printf("Bad environment setting: '%s = %s'\n", key, value);
panic("","", NO_NUM);

2
lib/sysutil/env_parse.c
View file

@ -34,7 +34,7 @@ long min, max; /* minimum and maximum values for the parameter */
if ((s=env_get_param(env, value, sizeof(value))) != 0) {
if (s == ESRCH) return(EP_UNSET); /* only error allowed */
printf("WARNING: get_mon_param() failed in env_parse(): %d\n",s);
printf("WARNING: env_get_param() failed in env_parse(): %d\n",s);
return(EP_EGETKENV);
}
val = value;

6
lib/sysutil/env_prefix.c
View file

@ -19,11 +19,11 @@ char *prefix; /* prefix to test for */
if ((s = env_get_param(env, value, sizeof(value))) != 0) {
if (s != ESRCH) /* only error allowed */
printf("WARNING: get_mon_param() failed in env_prefix(): %d\n", s);
printf("WARNING: env_get_param() failed in env_prefix(): %d\n", s);
return FALSE;
}
n = strlen(prefix);
return(value != NULL
&& strncmp(value, prefix, n) == 0
return(strncmp(value, prefix, n) == 0
&& strchr(punct, value[n]) != NULL);
}