projects
/
tinc
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
|
inline
| side by side (parent:
baebae2
)
Check for an illegal length of passphrase in read_passphrase().
author
Ivo Timmermans
<ivo@lychnis.net>
Mon, 17 Apr 2000 16:52:58 +0000
(16:52 +0000)
committer
Ivo Timmermans
<ivo@lychnis.net>
Mon, 17 Apr 2000 16:52:58 +0000
(16:52 +0000)
src/encr.c
patch
|
blob
|
history
diff --git
a/src/encr.c
b/src/encr.c
index
e78ed5e
..
c34c1c9
100644
(file)
--- a/
src/encr.c
+++ b/
src/encr.c
@@
-107,7
+107,12
@@
int read_passphrase(char *which, char **out)
}
fscanf(f, "%d ", &size);
}
fscanf(f, "%d ", &size);
- size >>= 2; /* nibbles->bits */
+ if(size < 1 || size > (1<<15))
+ {
+ syslog(LOG_ERR, "Illegal passphrase in %s; size would be %d", filename, size);
+ return -1;
+ }
+ size >>= 2; /* bits->nibbles */
pp = xmalloc(size+2);
fgets(pp, size+1, f);
fclose(f);
pp = xmalloc(size+2);
fgets(pp, size+1, f);
fclose(f);
projects / tinc / commitdiff