]> git.ipfire.org Git - thirdparty/samba.git/commitdiff
projects / thirdparty / samba.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 775e08e)
lib:util: Fix stack-use-after-return in crypt_as_best_we_can()
authorAndreas Schneider <asn@samba.org>
Fri, 17 Jan 2025 12:28:30 +0000 (13:28 +0100)
committerDouglas Bagnall <dbagnall@samba.org>
Fri, 17 Jan 2025 23:21:13 +0000 (23:21 +0000)
BUG: https://bugzilla.samba.org/show_bug.cgi?id=15784

Signed-off-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
Reviewed-by: Pavel Filipenský <pfilipensky@samba.org>
Autobuild-User(master): Douglas Bagnall <dbagnall@samba.org>
Autobuild-Date(master): Fri Jan 17 23:21:13 UTC 2025 on atb-devel-224

lib/util/util_crypt.c patch | blob | blame | history

diff --git a/lib/util/util_crypt.c b/lib/util/util_crypt.c
index 09cd47597d1b8da25c24711a58dd7db1eb157619..9ac6e1cfd0e5e41d44ab3e7f8bd3b696cc71ada5 100644 (file)
--- a/lib/util/util_crypt.c
+++ b/lib/util/util_crypt.c
@@ -1,11 +1,13 @@
 #include <replace.h>
 #include "data_blob.h"
+#include "discard.h"
 #include <talloc.h>
 #include <crypt.h>
 #include "util_crypt.h"
 
 
-static int crypt_as_best_we_can(const char *phrase,
+static int crypt_as_best_we_can(TALLOC_CTX *mem_ctx,
+                               const char *phrase,
                                const char *setting,
                                const char **hashp)
 {
@@ -63,8 +65,14 @@ static int crypt_as_best_we_can(const char *phrase,
                        ret = ENOTRECOVERABLE;
                }
        }
+       if (ret != 0) {
+               return ret;
+       }
 
-       *hashp = hash;
+       *hashp = talloc_strdup(mem_ctx, hash);
+       if (*hashp == NULL) {
+               ret = -1;
+       }
        return ret;
 }
 
@@ -75,14 +83,14 @@ int talloc_crypt_blob(TALLOC_CTX *mem_ctx,
                      DATA_BLOB *blob)
 {
        const char *hash = NULL;
-       int ret = crypt_as_best_we_can(phrase, setting, &hash);
+       int ret = crypt_as_best_we_can(mem_ctx, phrase, setting, &hash);
        if (ret != 0) {
                blob->data = NULL;
                blob->length = 0;
                return ret;
        }
        blob->length = strlen(hash);
-       blob->data = talloc_memdup(mem_ctx, hash, blob->length);
+       blob->data = discard_const_p(uint8_t, hash);
        if (blob->data == NULL) {
                return ENOMEM;
        }
Mirror of https://github.com/samba-team/samba.git