diff options
author | Jan Cholasta <jcholast@redhat.com> | 2012-02-13 10:10:40 -0500 |
---|---|---|
committer | Stephen Gallagher <sgallagh@redhat.com> | 2012-02-13 11:46:49 -0500 |
commit | 07647d65a0a7653303e00ec184edc1ad4aee060a (patch) | |
tree | 7deada422389acf229eaa69cf2879f2de5468af0 /src/responder | |
parent | 3bad53a76d9b2eeab485aca9198a0f0bdda14171 (diff) | |
download | sssd-07647d65a0a7653303e00ec184edc1ad4aee060a.tar.gz sssd-07647d65a0a7653303e00ec184edc1ad4aee060a.tar.xz sssd-07647d65a0a7653303e00ec184edc1ad4aee060a.zip |
SSH: Verify that names received from client are valid UTF-8 in responder
Also added a comment describing the wire format of client requests and
responses.
https://fedorahosted.org/sssd/ticket/1177
Diffstat (limited to 'src/responder')
-rw-r--r-- | src/responder/ssh/sshsrv_cmd.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/src/responder/ssh/sshsrv_cmd.c b/src/responder/ssh/sshsrv_cmd.c index eea151691..0a182f310 100644 --- a/src/responder/ssh/sshsrv_cmd.c +++ b/src/responder/ssh/sshsrv_cmd.c @@ -436,6 +436,10 @@ ssh_cmd_parse_request(struct ssh_cmd_ctx *cmd_ctx) } name = (char *)(body+c); + if (!sss_utf8_check((const uint8_t *)name, name_len-1)) { + DEBUG(SSSDBG_CRIT_FAILURE, ("Supplied data is not valid UTF-8 string\n")); + return EINVAL; + } if (strnlen(name, name_len) != name_len-1) { return EINVAL; } |