[GNUnet-SVN] r22647 - gnunet/src/gns

gnunet-svn

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[GNUnet-SVN] r22647 - gnunet/src/gns

From:	gnunet
Subject:	[GNUnet-SVN] r22647 - gnunet/src/gns
Date:	Sat, 14 Jul 2012 00:20:58 +0200

Author: schanzen
Date: 2012-07-14 00:20:58 +0200 (Sat, 14 Jul 2012)
New Revision: 22647

Modified:
   gnunet/src/gns/gnunet-gns-proxy.c
Log:
-fix bo

Modified: gnunet/src/gns/gnunet-gns-proxy.c
===================================================================
--- gnunet/src/gns/gnunet-gns-proxy.c   2012-07-13 22:12:03 UTC (rev 22646)
+++ gnunet/src/gns/gnunet-gns-proxy.c   2012-07-13 22:20:58 UTC (rev 22647)
@@ -36,6 +36,7 @@
 
 #define GNUNET_GNS_PROXY_PORT 7777
 #define MHD_MAX_CONNECTIONS 300
+#define MAX_HTTP_URI_LENGTH 2048
 
 /* MHD/cURL defines */
 #define BUF_WAIT_FOR_CURL 0
@@ -200,7 +201,7 @@
   long curl_response_code;
 
   /* The URL to fetch */
-  char url[2048];
+  char url[MAX_HTTP_URI_LENGTH];
 
   /* The cURL write buffer / MHD read buffer */
   char buffer[CURL_MAX_WRITE_SIZE + CURL_BUF_PADDING];
@@ -421,7 +422,9 @@
                   const char *value)
 {
   char* buf = cls;
-
+  
+  if (strlen (buf) + strlen (value) + 3 > MAX_HTTP_URI_LENGTH)
+    return MHD_NO;
   sprintf (buf+strlen (buf), "?%s=%s", key, value);
 
   return MHD_YES;
@@ -1510,7 +1513,7 @@
   const char* page = "<html><head><title>gnoxy</title>"\
                       "</head><body>cURL fail</body></html>";
   
-  char curlurl[512]; // buffer overflow!
+  char curlurl[MAX_HTTP_URI_LENGTH]; // buffer overflow!
   int ret = MHD_YES;
 
   struct ProxyCurlTask *ctask;

[Prev in Thread]

Current Thread

[Next in Thread]

[GNUnet-SVN] r22647 - gnunet/src/gns, gnunet <=

Prev by Date: [GNUnet-SVN] r22646 - gnunet/src/gns
Next by Date: [GNUnet-SVN] r22648 - gnunet/src/testbed
Previous by thread: [GNUnet-SVN] r22646 - gnunet/src/gns
Next by thread: [GNUnet-SVN] r22648 - gnunet/src/testbed
Index(es):
- Date
- Thread