Skip to content
Snippets Groups Projects
Commit ba60b6a0 authored by Moe Jette's avatar Moe Jette
Browse files

Patch from Gerrit: hostlist___hostrange_string__hostlist_next.diff 

_hostrange_string()/hostlist_next(): test for overrun

This lets the two functions _hostrange_string/hostlist_next return NULL in case
there is an overflow condition.

Two possible overflow conditions were analyzed:
 * if len <= MAXHOSTNAMELEN + 15 and the '=' is the case, then len++ means
   that buf[len] = '\0' is the same as buf[MAXHOSTNAMELEN + 16], which would
   cause a segmentation violation - fixed by checking length beforehand;
 * also checks the return value of the snprintfs,
 * and requires 'dims' as minimum suffix length.
parent c029193b
No related branches found
No related tags found
Hide whitespace changes
Inline Side-by-side
Showing
with 27 additions and 18 deletions
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
Nutzungsbedingungen | Datenschutzerklärung | Barrierefreiheitserklärung