mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-30 13:30:57 +08:00
Code Issues Packages Projects Releases Wiki Activity

Don't use ntohl().

Browse Source 
Add min/max bufsize check
This commit is contained in:
Kurt Zeilenga 2001-01-19 04:53:21 +00:00
parent 28d1dbd8ac
commit a4f4d8be59
1 changed files with 9 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
libraries/libldap/cyrus.c
View File

@ -124,15 +124,16 @@ sb_sasl_remove( Sockbuf_IO_Desc *sbiod )
}
static ber_len_t
sb_sasl_pkt_length( const char *buf, int debuglevel )
sb_sasl_pkt_length( const unsigned char *buf, int debuglevel )
{
ber_len_t size;
long tmp;
assert( buf != NULL );
tmp = *((long *)buf);
size = ntohl( tmp );
size = buf[0] << 24
| buf[1] << 16
| buf[2] << 8
| buf[3];
/* we really should check against actual buffer size set
* in the secopts.
@ -767,7 +768,10 @@ int ldap_pvt_sasl_secprops(
return LDAP_NOT_SUPPORTED;
}
if( maxbufsize > SASL_MAX_BUFF_SIZE ) {
if( maxbufsize && (( maxbufsize < SASL_MIN_BUFF_SIZE ) {
|| (maxbufsize > SASL_MAX_BUFF_SIZE ))
{
/* bad maxbufsize */
return LDAP_PARAM_ERROR;
}