hardenedbsd/HardenedBSD
1
0
Fork 0
mirror of https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git synced 2025-01-11 17:04:19 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add more sanity checks. *Lots* of sanity checks. Huge tracts of sanity checks.

Browse Source 
Make sure all arguments to the yp_*() functions are valid before sending
them off to the server. This is somewhat distressing: once again my
FreeBSD box brought down my entire network because of NIS bogosities.
I *think* the poor argument checking in this module is the cause, but
I still haven't been able to reproduce the exact series of events that
lead to the ypserv crashes. For now I've resorted to sticking my FreeBSD
box in a seprate domain. Hopefully a weekend of heavy testing will
uncover the problem.
This commit is contained in:
Bill Paul 1995-03-24 21:21:37 +00:00
parent 0ffe27f544
commit 06643071e5
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=7337
1 changed files with 40 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

48
lib/libc/yp/yplib.c
View File

@ -380,10 +380,12 @@ int *outvallen;
*outval = NULL;
*outvallen = 0;
/* Sanity check: no null keys allowed! */
/* Sanity check */
if (inkey == NULL || *inkey == '\0')
return YPERR_KEY;
if (inkey == NULL || !strlen(inkey) || inkeylen <= 0 ||
inmap == NULL || !strlen(inmap) ||
indomain == NULL || !strlen(indomain))
return YPERR_BADARGS;
again:
if( _yp_dobind(indomain, &ysd) != 0)
@ -459,6 +461,12 @@ int *outvallen;
struct timeval tv;
int r;
/* Sanity check */
if (indomain == NULL || !strlen(indomain) ||
inmap == NULL || !strlen(inmap))
return YPERR_BADARGS;
*outkey = *outval = NULL;
*outkeylen = *outvallen = 0;
@ -512,14 +520,16 @@ int *outvallen;
struct timeval tv;
int r;
/* Sanity check */
if (inkey == NULL || !strlen(inkey) || inkeylen <= 0 ||
inmap == NULL || !strlen(inmap) ||
indomain == NULL || !strlen(indomain))
return YPERR_BADARGS;
*outkey = *outval = NULL;
*outkeylen = *outvallen = 0;
/* Sanity check: no null keys allowed! */
if (inkey == NULL || *inkey == '\0')
return YPERR_KEY;
again:
if( _yp_dobind(indomain, &ysd) != 0)
return YPERR_DOMAIN;
@ -569,6 +579,12 @@ struct ypall_callback *incallback;
u_long status;
int clnt_sock;
/* Sanity check */
if (indomain == NULL || !strlen(indomain) ||
inmap == NULL || !strlen(inmap))
return YPERR_BADARGS;
if( _yp_dobind(indomain, &ysd) != 0)
return YPERR_DOMAIN;
@ -611,6 +627,12 @@ int *outorder;
struct timeval tv;
int r;
/* Sanity check */
if (indomain == NULL || !strlen(indomain) ||
inmap == NULL || !strlen(inmap))
return YPERR_BADARGS;
again:
if( _yp_dobind(indomain, &ysd) != 0)
return YPERR_DOMAIN;
@ -649,6 +671,11 @@ char **outname;
struct timeval tv;
int r;
/* Sanity check */
if (indomain == NULL || !strlen(indomain) ||
inmap == NULL || !strlen(inmap))
return YPERR_BADARGS;
again:
if( _yp_dobind(indomain, &ysd) != 0)
return YPERR_DOMAIN;
@ -685,6 +712,11 @@ struct ypmaplist **outmaplist;
struct timeval tv;
int r;
/* Sanity check */
if (indomain == NULL || !strlen(indomain))
return YPERR_BADARGS;
again:
if( _yp_dobind(indomain, &ysd) != 0)
return YPERR_DOMAIN;