Update SASL bufsize checks

author Kurt Zeilenga <kurt@openldap.org>

Thu, 18 Jan 2001 22:18:41 +0000 (22:18 +0000)

committer Kurt Zeilenga <kurt@openldap.org>

Thu, 18 Jan 2001 22:18:41 +0000 (22:18 +0000)
author Kurt Zeilenga <kurt@openldap.org>
Thu, 18 Jan 2001 22:18:41 +0000 (22:18 +0000)
committer Kurt Zeilenga <kurt@openldap.org>
Thu, 18 Jan 2001 22:18:41 +0000 (22:18 +0000)
diff --git a/libraries/libldap/cyrus.c b/libraries/libldap/cyrus.c

index e6026872a371a1e183937229d9833e57cf36e99d..c72198b40737bee2d6256a4b29798a1546a04f78 100644 (file)
--- a/libraries/libldap/cyrus.c
+++ b/libraries/libldap/cyrus.c
@@ -27,9 +27,6 @@
  * Various Cyrus SASL related stuff.
  */
  
-#define SASL_MAX_BUFF_SIZE     65536
-#define SASL_MIN_BUFF_SIZE     4096
-
  int ldap_int_sasl_init( void )
  {
         /* XXX not threadsafe */
@@ -137,13 +134,16 @@ sb_sasl_pkt_length( const char *buf, int debuglevel )
         tmp = *((long *)buf);
         size = ntohl( tmp );
     
+       /* we really should check against actual buffer size set
+        * in the secopts.
+        */
         if ( size > SASL_MAX_BUFF_SIZE ) {
                 /* somebody is trying to mess me up. */
                 ber_log_printf( LDAP_DEBUG_ANY, debuglevel,
                         "sb_sasl_pkt_length: received illegal packet length "
                         "of %lu bytes\n", (unsigned long)size );      
                 size = 16; /* this should lead to an error. */
-}
+       }
  
         return size + 4; /* include the size !!! */
  }
@@ -767,6 +767,10 @@ int ldap_pvt_sasl_secprops(
                                 return LDAP_NOT_SUPPORTED;
                         }
  
+                       if( maxbufsize > SASL_MAX_BUFF_SIZE ) {
+                               return LDAP_PARAM_ERROR;
+                       }
+
                 } else {
                         return LDAP_NOT_SUPPORTED;
                 }
diff --git a/libraries/libldap/init.c b/libraries/libldap/init.c

index cf49633cb9045f32e0cd673352fb92b4d7a5c140..ae70a5830ec2780c0cc79235aa7dafce88a96cdc 100644 (file)
--- a/libraries/libldap/init.c
+++ b/libraries/libldap/init.c
@@ -409,11 +409,13 @@ void ldap_int_initialize_global_options( struct ldapoptions *gopts, int *dbglvl
         gopts->ldo_def_sasl_authcid = NULL;
         gopts->ldo_def_sasl_authzid = NULL;
  
-       memset( &gopts->ldo_sasl_secprops, '\0', sizeof(gopts->ldo_sasl_secprops) );
+       memset( &gopts->ldo_sasl_secprops,
+               '\0', sizeof(gopts->ldo_sasl_secprops) );
  
         gopts->ldo_sasl_secprops.max_ssf = INT_MAX;
-       gopts->ldo_sasl_secprops.maxbufsize = 65536;
-       gopts->ldo_sasl_secprops.security_flags = SASL_SEC_NOPLAINTEXT|SASL_SEC_NOANONYMOUS;
+       gopts->ldo_sasl_secprops.maxbufsize = SASL_MAX_BUFF_SIZE;
+       gopts->ldo_sasl_secprops.security_flags =
+               SASL_SEC_NOPLAINTEXT | SASL_SEC_NOANONYMOUS;
  #endif
  
  #ifdef HAVE_TLS
diff --git a/libraries/libldap/ldap-int.h b/libraries/libldap/ldap-int.h

index 9ed399fae438959d5968ef12f50ee3ad99de0329..78a178bbfbe85eaac2894179ba303ea7fa0c343b 100644 (file)
--- a/libraries/libldap/ldap-int.h
+++ b/libraries/libldap/ldap-int.h
@@ -21,6 +21,9 @@
  #ifdef HAVE_CYRUS_SASL
         /* the need for this should be removed */
  #include <sasl.h>
+
+#define SASL_MAX_BUFF_SIZE     65536
+#define SASL_MIN_BUFF_SIZE     4096
  #endif
  
  /*
author	Kurt Zeilenga <kurt@openldap.org>
	Thu, 18 Jan 2001 22:18:41 +0000 (22:18 +0000)
committer	Kurt Zeilenga <kurt@openldap.org>
	Thu, 18 Jan 2001 22:18:41 +0000 (22:18 +0000)
libraries/libldap/cyrus.c		patch \| blob \| history
libraries/libldap/init.c		patch \| blob \| history
libraries/libldap/ldap-int.h		patch \| blob \| history