Wireshark · Ethereal-dev: [Ethereal-dev] [patch] to

Ethereal-dev: [Ethereal-dev] [patch] to_str.c

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Mike Duigou <ethereal@xxxxxxxxxx>

Date: Wed, 26 Oct 2005 10:37:06 -0700

Safer handling for building address string for AT_STRINGZ and AT_URI.

Please apply.

Mike

Index: epan/to_str.c
===================================================================
--- epan/to_str.c	(revision 16277)
+++ epan/to_str.c	(working copy)
@@ -807,16 +807,18 @@
     mtp3_addr_to_str_buf(addr->data, buf, buf_len);
     break;
   case AT_STRINGZ:
-    strcpy(buf, addr->data);
+    g_snprintf(buf, buf_len, "%s", addr->data);
     break;
   case AT_EUI64:
     g_snprintf(buf, buf_len, "%02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x",
             addr->data[0], addr->data[1], addr->data[2], addr->data[3],
             addr->data[4], addr->data[5], addr->data[6], addr->data[7]);
     break;
-  case AT_URI:
-    memmove(buf, addr->data, addr->len);
-    buf[addr->len] = '\0';
+  case AT_URI: {
+    int copy_len = addr->len < buf_len ? addr->len : buf_len;
+    memmove(buf, addr->data, copy_len );
+    buf[copy_len] = '\0';
+    }
     break;
   default:
     g_assert_not_reached();

Follow-Ups:
- SV: [Ethereal-dev] [patch] to_str.c
  - From: Anders Broman

Prev by Date: Re: [Ethereal-dev] FYI
Next by Date: [Ethereal-dev] nettl (HP-UX) patch: uid and pduin/pduout
Previous by thread: Re: [Ethereal-dev] FYI
Next by thread: SV: [Ethereal-dev] [patch] to_str.c
Index(es):
- Date
- Thread