diff options
| author | Fabiano Fidêncio <fidencio@redhat.com> | 2017-05-09 13:08:55 +0200 |
|---|---|---|
| committer | Lukas Slebodnik <lslebodn@redhat.com> | 2017-08-25 21:03:01 +0200 |
| commit | b0b9222f7dd62b19ec702afe295ec71624888e87 (patch) | |
| tree | 14caeac81f87480a91628325a93e8a991e121a1c /src/responder | |
| parent | 5d855b5d546eb995023d80d61433bbe91888dbdf (diff) | |
| download | sssd-b0b9222f7dd62b19ec702afe295ec71624888e87.tar.gz sssd-b0b9222f7dd62b19ec702afe295ec71624888e87.tar.xz sssd-b0b9222f7dd62b19ec702afe295ec71624888e87.zip | |
IFP: Don't pre-allocate the amount of entries requested
By allocating the number of entries when actually copying the list we
can avoid situations where users request an enourmous amount of results
but the number of results got from the backend are just a few.
With this new approach we end up allocating the whole list more
frequently but we avoid not returning valid results because the
requested number of enties is too big (note that if the amount of
results is too big as well, there's nothing much we can do).
A simple reproducer for this issue can be the really extreme call:
$ dbus-send --system --print-reply --dest=org.freedesktop.sssd.infopipe \
/org/freedesktop/sssd/infopipe/Users \
org.freedesktop.sssd.infopipe.Users.ListByName string:"*" uint32:"-1"
The example pasted above would try to allocate an array of MAX_UINT32
size, which would fail directly.
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
Reviewed-by: Pavel Březina <pbrezina@redhat.com>
Diffstat (limited to 'src/responder')
| -rw-r--r-- | src/responder/ifp/ifpsrv_util.c | 16 |
1 files changed, 9 insertions, 7 deletions
diff --git a/src/responder/ifp/ifpsrv_util.c b/src/responder/ifp/ifpsrv_util.c index 6eea3354c..1df646339 100644 --- a/src/responder/ifp/ifpsrv_util.c +++ b/src/responder/ifp/ifpsrv_util.c @@ -372,7 +372,7 @@ struct ifp_list_ctx *ifp_list_ctx_new(struct sbus_request *sbus_req, list_ctx->ctx = ctx; list_ctx->dom = ctx->rctx->domains; list_ctx->filter = filter; - list_ctx->paths = talloc_zero_array(list_ctx, const char *, limit); + list_ctx->paths = talloc_zero_array(list_ctx, const char *, 1); if (list_ctx->paths == NULL) { talloc_free(list_ctx); return NULL; @@ -389,12 +389,6 @@ errno_t ifp_list_ctx_remaining_capacity(struct ifp_list_ctx *list_ctx, errno_t ret; if (list_ctx->limit == 0) { - list_ctx->paths = talloc_zero_array(list_ctx, const char *, entries); - if (list_ctx->paths == NULL) { - DEBUG(SSSDBG_CRIT_FAILURE, "talloc_zero_array() failed\n"); - ret = ENOMEM; - goto done; - } capacity = entries; goto immediately; } @@ -408,6 +402,14 @@ errno_t ifp_list_ctx_remaining_capacity(struct ifp_list_ctx *list_ctx, } immediately: + talloc_zfree(list_ctx->paths); + list_ctx->paths = talloc_zero_array(list_ctx, const char *, capacity); + if (list_ctx->paths == NULL) { + DEBUG(SSSDBG_CRIT_FAILURE, "talloc_zero_array() failed\n"); + ret = ENOMEM; + goto done; + } + *_capacity = capacity; ret = EOK; |