Fixes to Coverity defects 85010 84878 72752 72742 72719 and 73418.

skygw_utils.cc: Added function is_valid_posix_path that checks if a path is POSIX-compliant.
2015-01-05 06:05:56 +02:00
parent b3d79f7273
commit ba009e5fd3
9 changed files with 36 additions and 16 deletions
--- a/server/core/modutil.c
+++ b/server/core/modutil.c
@ -140,7 +140,6 @@ int modutil_MySQL_query_len(
 {
 	int     len;
 	int     buflen;
-	uint8_t data;
 	
 	if (!modutil_is_SQL(buf))
 	{
@ -287,7 +286,7 @@ modutil_get_query(GWBUF *buf)
                        
                case MYSQL_COM_QUERY:
                        len = MYSQL_GET_PACKET_LEN(packet)-1; /*< distract 1 for packet type byte */        
-                        if (len < 1 || (query_str = (char *)malloc(len+1)) == NULL)
+                        if (len < 1 || len > SIZE_MAX - 1 || (query_str = (char *)malloc(len+1)) == NULL)
                        {
                                goto retblock;
                        }
@ -297,7 +296,7 @@ modutil_get_query(GWBUF *buf)
                        
                default:
                        len = strlen(STRPACKETTYPE(packet_type))+1;
-                        if (len < 1 || (query_str = (char *)malloc(len+1)) == NULL)
+                        if (len < 1 || len > SIZE_MAX - 1 || (query_str = (char *)malloc(len+1)) == NULL)
                        {
                                goto retblock;
                        }
--- a/server/core/test/testadminusers.c
+++ b/server/core/test/testadminusers.c
@ -272,6 +272,8 @@ char	*home, buf[1024];
 	if ((home = getenv("MAXSCALE_HOME")) == NULL || strlen(home) >= 1024)
 		home =  "/usr/local/skysql";
 	sprintf(buf, "%s/etc/passwd", home);
+    if(!is_valid_posix_path(buf))
+        exit(1);
 	if (strcmp(buf, "/etc/passwd") != 0)
 		unlink(buf);