From 709ed1ab7417596a049173ebe2380f7326c2d560 Mon Sep 17 00:00:00 2001
From: David Sommerseth <dazo@users.sourceforge.net>
Date: Fri, 2 Oct 2009 22:52:38 +0200
Subject: Modified get_env() function to limit number of bytes to extract

This is to enhance the security and to avoid possible buffer overflows
based on input received from the client
---
 plugin/eurephia-auth.c | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

(limited to 'plugin/eurephia-auth.c')

diff --git a/plugin/eurephia-auth.c b/plugin/eurephia-auth.c
index 10d9447..14ef79b 100644
--- a/plugin/eurephia-auth.c
+++ b/plugin/eurephia-auth.c
@@ -39,7 +39,7 @@
 #include <eurephia_context.h>
 #include <eurephiadb.h>
 #include <eurephia.h>
-
+#include <eurephia_nullsafe.h>
 
 #ifdef ENABLE_DEBUG  /* To avoid compiler warnings when ENABLE_DEBUG is not defined */
 
@@ -110,9 +110,9 @@ static void dump_env(FILE *f, const char *prefix, const char *envp[]) {
  */
 static void daemonize(const char *envp[])
 {
-        const char *daemon_string = get_env(NULL, 0, envp, "daemon");
+        char *daemon_string = get_env(NULL, 0, 32, envp, "daemon");
         if( daemon_string && daemon_string[0] == '1' ) {
-                const char *log_redirect = get_env(NULL, 0, envp, "daemon_log_redirect");
+                char *log_redirect = get_env(NULL, 0, 32, envp, "daemon_log_redirect");
                 int fd = -1;
                 if( log_redirect && log_redirect[0] == '1' ) {
                         fd = dup (2);
@@ -123,7 +123,9 @@ static void daemonize(const char *envp[])
                         dup2(fd, 2);
                         close(fd);
                 }
+                free_nullsafe(NULL, log_redirect);
         }
+        free_nullsafe(NULL, daemon_string);
 }
 
 
-- 
cgit