diff -up gnutls-2.10.3/src/serv.c.sprintf gnutls-2.10.3/src/serv.c --- gnutls-2.10.3/src/serv.c.sprintf 2010-11-01 13:18:24.000000000 +0100 +++ gnutls-2.10.3/src/serv.c 2010-12-02 15:13:12.000000000 +0100 @@ -438,7 +438,7 @@ static const char DEFAULT_DATA[] = /* Creates html with the current session information. */ -#define tmp2 &http_buffer[strlen(http_buffer)] +#define tmp2 &http_buffer[strlen(http_buffer)], len-strlen(http_buffer) static char * peer_print_info (gnutls_session_t session, int *ret_length, const char *header) @@ -448,7 +448,7 @@ peer_print_info (gnutls_session_t sessio size_t i, sesid_size; char *http_buffer; gnutls_kx_algorithm_t kx_alg; - size_t len = 5 * 1024 + strlen (header); + size_t len = 20 * 1024 + strlen (header); char *crtinfo = NULL; size_t ncrtinfo = 0; @@ -512,11 +512,11 @@ peer_print_info (gnutls_session_t sessio /* print session_id */ gnutls_session_get_id (session, sesid, &sesid_size); - sprintf (tmp2, "\n
Session ID: "); + snprintf (tmp2, "\n
Session ID: "); for (i = 0; i < sesid_size; i++) - sprintf (tmp2, "%.2X", sesid[i]); - sprintf (tmp2, "
\n"); - sprintf (tmp2, + snprintf (tmp2, "%.2X", sesid[i]); + snprintf (tmp2, "\n"); + snprintf (tmp2, "Server Name: %s
\n", dns); + snprintf (tmp2, "\nServer Name: %s
\n", dns); } } @@ -541,7 +541,7 @@ peer_print_info (gnutls_session_t sessio #ifdef ENABLE_SRP if (kx_alg == GNUTLS_KX_SRP) { - sprintf (tmp2, "Connected as user '%s'.
\n", + snprintf (tmp2, "Connected as user '%s'.
\n", gnutls_srp_server_get_username (session)); } #endif @@ -549,7 +549,7 @@ peer_print_info (gnutls_session_t sessio #ifdef ENABLE_PSK if (kx_alg == GNUTLS_KX_PSK) { - sprintf (tmp2, "Connected as user '%s'.
\n", + snprintf (tmp2, "Connected as user '%s'.
\n", gnutls_psk_server_get_username (session)); } #endif @@ -557,7 +557,7 @@ peer_print_info (gnutls_session_t sessio #ifdef ENABLE_ANON if (kx_alg == GNUTLS_KX_ANON_DH) { - sprintf (tmp2, + snprintf (tmp2, "Connect using anonymous DH (prime of %d bits)
\n", gnutls_dh_get_prime_bits (session)); } @@ -565,7 +565,7 @@ peer_print_info (gnutls_session_t sessio if (kx_alg == GNUTLS_KX_DHE_RSA || kx_alg == GNUTLS_KX_DHE_DSS) { - sprintf (tmp2, + snprintf (tmp2, "Ephemeral DH using prime of %d bits.Protocol version: | %s |
Certificate Type: | %s |
Certificate Type: | %s |
Key Exchange: | %s |
Key Exchange: | %s |
Compression | %s |
Compression | %s |
Cipher | %s |
Cipher | %s |
MAC | %s |
MAC | %s |
Ciphersuite | %s |
"); - strcat (http_buffer, crtinfo); - strcat (http_buffer, "\n\n"); + snprintf(tmp2, "
%s\n\n", crtinfo); free (crtinfo); } - strcat (http_buffer, "
Your HTTP header was:
"); - strcat (http_buffer, header); - strcat (http_buffer, ""); - - strcat (http_buffer, "\n" HTTP_END); + snprintf(tmp2, "
Your HTTP header was:
%s\n" HTTP_END, header); *ret_length = strlen (http_buffer);