IFP: Skip non-POSIX groups properly

When ifp_users_user_get_groups is called, for example via GetAll and
the list of groups contains a non-POSIX group, we skip an array member,
resulting in random memory being passed to the caller.

Resolves:
    https://fedorahosted.org/sssd/ticket/2863

Reviewed-by: Pavel Březina <pbrezina@redhat.com>

1 files changed, 4 insertions, 2 deletions

diff --git a/src/responder/ifp/ifp_users.c b/src/responder/ifp/ifp_users.c
index 4746de368..e542e811c 100644
--- a/src/responder/ifp/ifp_users.c
+++ b/src/responder/ifp/ifp_users.c
@@ -806,8 +806,10 @@ void ifp_users_user_get_groups(struct sbus_request *sbus_req,
             continue;
         }
 
-        out[i] = ifp_groups_build_path_from_msg(out, domain, res->msgs[i]);
-        if (out[i] == NULL) {
+        out[num_groups] = ifp_groups_build_path_from_msg(out,
+                                                         domain,
+                                                         res->msgs[i]);
+        if (out[num_groups] == NULL) {
             DEBUG(SSSDBG_CRIT_FAILURE, "ifp_groups_build_path() failed\n");
             return;
         }