summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorTodd C. Miller <millert@cvs.openbsd.org>2002-12-11 22:55:40 +0000
committerTodd C. Miller <millert@cvs.openbsd.org>2002-12-11 22:55:40 +0000
commitfc4d67c279b2d8573673469d68082d1f7c280438 (patch)
treeb989e38630062ef9cdeae5a135ca444c7fc6a336
parent0a4b967b12c2c46a46d4f1ea49d2122d2dd2190e (diff)
Make x_handy in XDR u_int, not int since there are places in the
code that assign a u_int value to x_handy. However, this means that we need to be careful checking for overflow as we can no longer subtract a value and check the result for < 0. We reorder the expression instead to avoid this problem (basic algebra). deraadt@ OK
-rw-r--r--include/rpc/xdr.h4
-rw-r--r--lib/libc/rpc/xdr_mem.c24
2 files changed, 17 insertions, 11 deletions
diff --git a/include/rpc/xdr.h b/include/rpc/xdr.h
index 26731c04f3d..05a7e100d23 100644
--- a/include/rpc/xdr.h
+++ b/include/rpc/xdr.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: xdr.h,v 1.4 2002/02/17 19:42:21 millert Exp $ */
+/* $OpenBSD: xdr.h,v 1.5 2002/12/11 22:55:39 millert Exp $ */
/* $NetBSD: xdr.h,v 1.7 1995/04/29 05:28:06 cgd Exp $ */
/*
@@ -120,7 +120,7 @@ typedef struct __rpc_xdr {
caddr_t x_public; /* users' data */
caddr_t x_private; /* pointer to private data */
caddr_t x_base; /* private used for position info */
- int x_handy; /* extra private word */
+ u_int x_handy; /* extra private word */
} XDR;
/*
diff --git a/lib/libc/rpc/xdr_mem.c b/lib/libc/rpc/xdr_mem.c
index b9a8495643f..fe84e4f7796 100644
--- a/lib/libc/rpc/xdr_mem.c
+++ b/lib/libc/rpc/xdr_mem.c
@@ -28,7 +28,7 @@
*/
#if defined(LIBC_SCCS) && !defined(lint)
-static char *rcsid = "$OpenBSD: xdr_mem.c,v 1.8 2001/09/17 18:34:51 jason Exp $";
+static char *rcsid = "$OpenBSD: xdr_mem.c,v 1.9 2002/12/11 22:55:39 millert Exp $";
#endif /* LIBC_SCCS and not lint */
/*
@@ -114,8 +114,9 @@ xdrmem_getlong_aligned(xdrs, lp)
long *lp;
{
- if ((xdrs->x_handy -= sizeof(int32_t)) < 0)
+ if (xdrs->x_handy < sizeof(int32_t))
return (FALSE);
+ xdrs->x_handy -= sizeof(int32_t);
*lp = ntohl(*(int32_t *)xdrs->x_private);
xdrs->x_private += sizeof(int32_t);
return (TRUE);
@@ -127,8 +128,9 @@ xdrmem_putlong_aligned(xdrs, lp)
long *lp;
{
- if ((xdrs->x_handy -= sizeof(int32_t)) < 0)
+ if (xdrs->x_handy < sizeof(int32_t))
return (FALSE);
+ xdrs->x_handy -= sizeof(int32_t);
*(int32_t *)xdrs->x_private = htonl((u_int32_t)*lp);
xdrs->x_private += sizeof(int32_t);
return (TRUE);
@@ -141,8 +143,9 @@ xdrmem_getlong_unaligned(xdrs, lp)
{
int32_t l;
- if ((xdrs->x_handy -= sizeof(int32_t)) < 0)
+ if (xdrs->x_handy < sizeof(int32_t))
return (FALSE);
+ xdrs->x_handy -= sizeof(int32_t);
memcpy(&l, xdrs->x_private, sizeof(int32_t));
*lp = ntohl(l);
xdrs->x_private += sizeof(int32_t);
@@ -156,8 +159,9 @@ xdrmem_putlong_unaligned(xdrs, lp)
{
int32_t l;
- if ((xdrs->x_handy -= sizeof(int32_t)) < 0)
+ if (xdrs->x_handy < sizeof(int32_t))
return (FALSE);
+ xdrs->x_handy -= sizeof(int32_t);
l = htonl((u_int32_t)*lp);
memcpy(xdrs->x_private, &l, sizeof(int32_t));
xdrs->x_private += sizeof(int32_t);
@@ -171,8 +175,9 @@ xdrmem_getbytes(xdrs, addr, len)
u_int len;
{
- if ((xdrs->x_handy -= len) < 0)
+ if (xdrs->x_handy < len)
return (FALSE);
+ xdrs->x_handy -= len;
memcpy(addr, xdrs->x_private, len);
xdrs->x_private += len;
return (TRUE);
@@ -185,8 +190,9 @@ xdrmem_putbytes(xdrs, addr, len)
u_int len;
{
- if ((xdrs->x_handy -= len) < 0)
+ if (xdrs->x_handy < len)
return (FALSE);
+ xdrs->x_handy -= len;
memcpy(xdrs->x_private, addr, len);
xdrs->x_private += len;
return (TRUE);
@@ -209,10 +215,10 @@ xdrmem_setpos(xdrs, pos)
caddr_t newaddr = xdrs->x_base + pos;
caddr_t lastaddr = xdrs->x_private + xdrs->x_handy;
- if ((long)newaddr > (long)lastaddr)
+ if (newaddr > lastaddr)
return (FALSE);
xdrs->x_private = newaddr;
- xdrs->x_handy = (long)lastaddr - (long)newaddr;
+ xdrs->x_handy = (u_int)(lastaddr - newaddr); /* XXX w/64-bit pointers, u_int not enough! */
return (TRUE);
}