[Pkg-gnupg-commit] [gnupg2] 188/241: dirmngr: Avoid casting away a const from an char**.
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Wed Dec 9 20:32:15 UTC 2015
This is an automated email from the git hooks/post-receive script.
dkg pushed a commit to branch master
in repository gnupg2.
commit 6501741d2c1beb8060198a39a1aa950cb11b386f
Author: Werner Koch <wk at gnupg.org>
Date: Fri Nov 27 17:10:59 2015 +0100
dirmngr: Avoid casting away a const from an char**.
* dirmngr/ldap.c (start_cert_fetch_ldap): Do not use pointers from
global variables.
Signed-off-by: Werner Koch <wk at gnupg.org>
---
dirmngr/ldap.c | 51 ++++++++++++++++++++++++++++++++++++++-------------
1 file changed, 38 insertions(+), 13 deletions(-)
diff --git a/dirmngr/ldap.c b/dirmngr/ldap.c
index 1fe8a81..20cbbd8 100644
--- a/dirmngr/ldap.c
+++ b/dirmngr/ldap.c
@@ -520,33 +520,54 @@ start_cert_fetch_ldap (ctrl_t ctrl, cert_fetch_context_t *context,
strlist_t patterns, const ldap_server_t server)
{
gpg_error_t err;
- const char *host;
+ char *proxy = NULL;
+ char *host = NULL;
int port;
- const char *user;
- const char *pass;
+ char *user = NULL;
+ char *pass = NULL;
const char *base;
char *argv[50];
- int argc;
- int argc_malloced;
+ int argc = 0;
+ int argc_malloced = 0;
char portbuf[30], timeoutbuf[30];
*context = NULL;
+
+ if (opt.ldap_proxy && !(proxy = xtrystrdup (opt.ldap_proxy)))
+ {
+ err = gpg_error_from_syserror ();
+ goto leave;
+ }
+
if (server)
{
- host = server->host;
+ if (server->host && !(host = xtrystrdup (server->host)))
+ {
+ err = gpg_error_from_syserror ();
+ goto leave;
+ }
port = server->port;
- user = server->user;
- pass = server->pass;
+ if (server->user && !(user = xtrystrdup (server->user)))
+ {
+ err = gpg_error_from_syserror ();
+ goto leave;
+ }
+ if (server->pass && !(pass = xtrystrdup (server->pass)))
+ {
+ err = gpg_error_from_syserror ();
+ goto leave;
+ }
base = server->base;
+
}
else /* Use a default server. */
return gpg_error (GPG_ERR_NOT_IMPLEMENTED);
+
if (!base)
base = "";
- argc = 0;
if (pass) /* Note: Must be the first item. */
{
argv[argc++] = "--pass";
@@ -558,14 +579,14 @@ start_cert_fetch_ldap (ctrl_t ctrl, cert_fetch_context_t *context,
argv[argc++] = "--multi";
if (opt.ldaptimeout)
{
- sprintf (timeoutbuf, "%u", opt.ldaptimeout);
+ snprintf (timeoutbuf, sizeof timeoutbuf, "%u", opt.ldaptimeout);
argv[argc++] = "--timeout";
argv[argc++] = timeoutbuf;
}
if (opt.ldap_proxy)
{
argv[argc++] = "--proxy";
- argv[argc++] = opt.ldap_proxy;
+ argv[argc++] = proxy;
}
if (host)
{
@@ -574,7 +595,7 @@ start_cert_fetch_ldap (ctrl_t ctrl, cert_fetch_context_t *context,
}
if (port)
{
- sprintf (portbuf, "%d", port);
+ snprintf (portbuf, sizeof portbuf, "%d", port);
argv[argc++] = "--port";
argv[argc++] = portbuf;
}
@@ -626,7 +647,7 @@ start_cert_fetch_ldap (ctrl_t ctrl, cert_fetch_context_t *context,
goto leave;
}
- err = ldap_wrapper (ctrl, &(*context)->reader, argv);
+ err = ldap_wrapper (ctrl, &(*context)->reader, (const char**)argv);
if (err)
{
@@ -637,6 +658,10 @@ start_cert_fetch_ldap (ctrl_t ctrl, cert_fetch_context_t *context,
leave:
for (; argc_malloced < argc; argc_malloced++)
xfree (argv[argc_malloced]);
+ xfree (proxy);
+ xfree (host);
+ xfree (user);
+ xfree (pass);
return err;
}
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-gnupg/gnupg2.git
More information about the Pkg-gnupg-commit
mailing list