Home Explore Help
Sign In
RONCC
/
Big-Data-HPC-Platform
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

HPCC-10888 Fix Potential buffer overruns

Previous code was copying password to a local buffer which went out of scope
when returning from the constructor. This change copyies the password to
a StringBuffer member where it will persist the lifetime of the object

Signed-off-by: William Whitehead <william.whitehead@lexisnexis.com>
William Whitehead 11 years ago
parent
4de4e67799
commit
429cd762b7
1 changed files with 5 additions and 11 deletions
Split View Show Diff Stats
  1. 5 11
      system/security/securesocket/securesocket.cpp

+ 5 - 11
system/security/securesocket/securesocket.cpp
View File 

@@ -827,6 +827,7 @@ private:
 
     bool m_verify;
 
     bool m_address_match;
 
     Owned<CStringSet> m_peers;
 
+    StringBuffer password;
 
 
 public:
 
     IMPLEMENT_IINTERFACE;
 
@@ -867,11 +868,8 @@ public:
 
         {
 
             throw MakeStringException(-1, "ctx can't be created");
 
         }
 
-
 
-        char passwdbuf[128];
 
-        strcpy(passwdbuf, passphrase);
 
-
 
-        SSL_CTX_set_default_passwd_cb_userdata(m_ctx, passwdbuf);
 
+        password.append(passphrase);
 
+        SSL_CTX_set_default_passwd_cb_userdata(m_ctx, (void*)password.str());
 
         SSL_CTX_set_default_passwd_cb(m_ctx, pem_passwd_cb);
 
 
         if(SSL_CTX_use_certificate_file(m_ctx, certfile, SSL_FILETYPE_PEM) <= 0)
 
@@ -918,12 +916,8 @@ public:
 
         const char* passphrase = config->queryProp("passphrase");
 
         if(passphrase && *passphrase)
 
         {
 
-            StringBuffer passbuf;
 
-            decrypt(passbuf, passphrase);
 
-            char passwdbuf[128];
 
-            strcpy(passwdbuf, passbuf.str());
 
-
 
-            SSL_CTX_set_default_passwd_cb_userdata(m_ctx, passwdbuf);
 
+            decrypt(password, passphrase);
 
+            SSL_CTX_set_default_passwd_cb_userdata(m_ctx, (void*)password.str());
 
             SSL_CTX_set_default_passwd_cb(m_ctx, pem_passwd_cb);
 
         }