diff options
| author | Moritz Jodeit <moritz@cvs.openbsd.org> | 2007-10-10 19:39:20 +0000 |
|---|---|---|
| committer | Moritz Jodeit <moritz@cvs.openbsd.org> | 2007-10-10 19:39:20 +0000 |
| commit | e10ee653ed6605f2a239b66bd72ca40daf184358 (patch) | |
| tree | cb5731ebd94e3f93a384320c0a4bc70ce128d572 /lib | |
| parent | fe6c691233ecd74345346ac16e89b6fdb2cab412 (diff) | |
Replace use of strcpy(3) and other pointer goo in
SSL_get_shared_ciphers() with strlcat(3).
ok deraadt@ markus@
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/libssl/ssl_lib.c | 27 |
1 files changed, 12 insertions, 15 deletions
diff --git a/lib/libssl/ssl_lib.c b/lib/libssl/ssl_lib.c index e9fda28f638..0f4b7a475b7 100644 --- a/lib/libssl/ssl_lib.c +++ b/lib/libssl/ssl_lib.c @@ -1168,36 +1168,33 @@ int SSL_set_cipher_list(SSL *s,const char *str) /* works well for SSLv2, not so good for SSLv3 */ char *SSL_get_shared_ciphers(const SSL *s,char *buf,int len) { - char *p; + char *end; STACK_OF(SSL_CIPHER) *sk; SSL_CIPHER *c; + size_t curlen = 0; int i; if ((s->session == NULL) || (s->session->ciphers == NULL) || (len < 2)) return(NULL); - p=buf; sk=s->session->ciphers; + buf[0] = '\0'; for (i=0; i<sk_SSL_CIPHER_num(sk); i++) { - int n; - c=sk_SSL_CIPHER_value(sk,i); - n=strlen(c->name); - if (n+1 > len) + end = buf + curlen; + if (strlcat(buf, c->name, len) >= len || + (curlen = strlcat(buf, ":", len)) >= len) { - if (p != buf) - --p; - *p='\0'; - return buf; + /* remove truncated cipher from list */ + *end = '\0'; + break; } - strcpy(p,c->name); - p+=n; - *(p++)=':'; - len-=n+1; } - p[-1]='\0'; + /* remove trailing colon */ + if ((end = strrchr(buf, ':')) != NULL) + *end = '\0'; return(buf); } |