diff options
| author | Jan Cholasta <jcholast@redhat.com> | 2012-08-27 04:43:23 -0400 |
|---|---|---|
| committer | Jakub Hrozek <jhrozek@redhat.com> | 2012-09-04 10:17:42 +0200 |
| commit | ef9f85751b26995093cc9782fe48ddeacc8e2d3f (patch) | |
| tree | b0d7601f32cccb97189cb503a010037d1b1ea95c /src/util | |
| parent | a3d176d116ceccd6a7547c128fab5df5cdd2c2b6 (diff) | |
| download | sssd-ef9f85751b26995093cc9782fe48ddeacc8e2d3f.tar.gz sssd-ef9f85751b26995093cc9782fe48ddeacc8e2d3f.tar.xz sssd-ef9f85751b26995093cc9782fe48ddeacc8e2d3f.zip | |
SSH: Return error code in SSH utility functions
Diffstat (limited to 'src/util')
| -rw-r--r-- | src/util/sss_ssh.c | 47 | ||||
| -rw-r--r-- | src/util/sss_ssh.h | 10 |
2 files changed, 40 insertions, 17 deletions
diff --git a/src/util/sss_ssh.c b/src/util/sss_ssh.c index 60ed5878a..a713eab02 100644 --- a/src/util/sss_ssh.c +++ b/src/util/sss_ssh.c @@ -111,38 +111,50 @@ done: return ret; } -char * +errno_t sss_ssh_get_pubkey_algorithm(TALLOC_CTX *mem_ctx, - struct sss_ssh_pubkey *pubkey) + struct sss_ssh_pubkey *pubkey, + char **result) { size_t c = 0; uint32_t algo_len; char *algo; + if (pubkey->data_len < 5) { + return EINVAL; + } + SAFEALIGN_COPY_UINT32(&algo_len, pubkey->data, &c); algo_len = ntohl(algo_len); + if (algo_len < 1 || algo_len > 64 || algo_len > pubkey->data_len - 4) { + /* the maximum length of 64 is defined in RFC 4250 */ + return EINVAL; + } algo = talloc_zero_array(mem_ctx, char, algo_len+1); if (!algo) { - return NULL; + return ENOMEM; } memcpy(algo, pubkey->data+c, algo_len); - return algo; + *result = algo; + return EOK; } -char * +errno_t sss_ssh_format_pubkey(TALLOC_CTX *mem_ctx, struct sss_ssh_ent *ent, struct sss_ssh_pubkey *pubkey, enum sss_ssh_pubkey_format format, - const char *comment) + const char *comment, + char **result) { TALLOC_CTX *tmp_ctx; + errno_t ret; char *blob; char *algo; - char *result = NULL; + char *out = NULL; if (!comment) { comment = ent->name; @@ -150,33 +162,42 @@ sss_ssh_format_pubkey(TALLOC_CTX *mem_ctx, tmp_ctx = talloc_new(NULL); if (!tmp_ctx) { - return NULL; + return ENOMEM; } blob = sss_base64_encode(tmp_ctx, pubkey->data, pubkey->data_len); if (!blob) { + ret = ENOMEM; goto done; } switch (format) { case SSS_SSH_FORMAT_RAW: /* base64-encoded key blob */ - result = talloc_steal(mem_ctx, blob); + out = talloc_steal(mem_ctx, blob); break; case SSS_SSH_FORMAT_OPENSSH: /* OpenSSH authorized_keys/known_hosts format */ - algo = sss_ssh_get_pubkey_algorithm(tmp_ctx, pubkey); - if (!algo) { + ret = sss_ssh_get_pubkey_algorithm(tmp_ctx, pubkey, &algo); + if (ret != EOK) { + goto done; + } + + out = talloc_asprintf(mem_ctx, "%s %s %s", algo, blob, comment); + if (!out) { + ret = ENOMEM; goto done; } - result = talloc_asprintf(mem_ctx, "%s %s %s", algo, blob, comment); break; } + *result = out; + ret = EOK; + done: talloc_free(tmp_ctx); - return result; + return ret; } diff --git a/src/util/sss_ssh.h b/src/util/sss_ssh.h index 29743a085..ef663d9ae 100644 --- a/src/util/sss_ssh.h +++ b/src/util/sss_ssh.h @@ -41,20 +41,22 @@ sss_ssh_make_ent(TALLOC_CTX *mem_ctx, struct ldb_message *msg, struct sss_ssh_ent **result); -char * +errno_t sss_ssh_get_pubkey_algorithm(TALLOC_CTX *mem_ctx, - struct sss_ssh_pubkey *pubkey); + struct sss_ssh_pubkey *pubkey, + char **result); enum sss_ssh_pubkey_format { SSS_SSH_FORMAT_RAW, SSS_SSH_FORMAT_OPENSSH }; -char * +errno_t sss_ssh_format_pubkey(TALLOC_CTX *mem_ctx, struct sss_ssh_ent *ent, struct sss_ssh_pubkey *pubkey, enum sss_ssh_pubkey_format format, - const char *comment); + const char *comment, + char **result); #endif /* _SSS_SSH_H_ */ |