Home / Browse / Webware for Python / Mail / Archive

Webware for Python

Email Archive: webware-checkins (read-only)

[Webware-checkins] CVS: Webware/WebKit/Native/wkcgi wkcgi.c,1.4,1.5

From: Geoff Talvola <gtalvola@us...> - 2002-04-23 19:55

Update of /cvsroot/webware/Webware/WebKit/Native/wkcgi
In directory usw-pr-cvs1:/tmp/cvs-serv28973/WebKit/Native/wkcgi

Modified Files:
	wkcgi.c 
Log Message:
fixing buffer overflow in wkcgi.exe

Index: wkcgi.c
===================================================================
RCS file: /cvsroot/webware/Webware/WebKit/Native/wkcgi/wkcgi.c,v
retrieving revision 1.4
retrieving revision 1.5
diff -C2 -d -r1.4 -r1.5
*** wkcgi.c	18 Dec 2001 21:32:54 -0000	1.4
--- wkcgi.c	23 Apr 2002 19:55:35 -0000	1.5
***************
*** 48,66 ****
  	len_str = getenv("CONTENT_LENGTH");
  	if (len_str !=NULL) {
! 	  int read=0;
! 	  int sent=0;
! 	  int sent_this_time=0;
! 	  content_length = atoi(getenv("CONTENT_LENGTH"));
! 	  log_message("There is post data");
! 	  buffer = (char*) calloc(8092,1);
! 	  while (read < content_length) {
! 		read = read + fread(buffer, 1, content_length-read, stdin);
! 		sent_this_time = send(sock, buffer, read-sent, 0);
! 		if( sent_this_time<0 ) {
! 			log_message("send() returned error code");
! 			return -1;
  		}
- 		sent += sent_this_time;
- 	  }
  	}
  
--- 48,87 ----
  	len_str = getenv("CONTENT_LENGTH");
  	if (len_str !=NULL) {
! 		int read=0;
! 		int sent=0;
! 		int read_this_time=0;
! 		int sent_this_time=0;
! 		int amount_to_read=0;
! 		int amount_to_send=0;
! 		content_length = atoi(getenv("CONTENT_LENGTH"));
! 		log_message("There is post data");
! 		buffer = (char*) calloc(8092,1);
! 		while (read < content_length) {
! 			amount_to_read = content_length-read;
! 			if( amount_to_read > 8092 ) {
! 				amount_to_read = 8092;
! 			}
! 			read_this_time = fread(buffer, 1, amount_to_read, stdin);
! 			if( read_this_time <= 0 ) {
! 				if( ferror(stdin) ) {
! 					log_message("error during fread(stdin)");
! 					return -1;
! 				} else {
! 					log_message("premature end of input on stdin");
! 					return -1;
! 				}
! 			}
! 			read = read + read_this_time;
! 			amount_to_send = read_this_time;
! 			while( amount_to_send > 0 ) {
! 				sent_this_time = send(sock, buffer+(read_this_time-amount_to_send), amount_to_send, 0);
! 				if( sent_this_time<=0 ) {
! 					log_message("send() returned error code");
! 					return -1;
! 				}
! 				sent += sent_this_time;
! 				amount_to_send -= sent_this_time;
! 			}
  		}
  	}

Thread View

Thread	Author	Date
[Webware-checkins] CVS: Webware/WebKit/Native/wkcgi wkcgi.c,1.4,1.5	Geoff Talvola <gtalvola@us...>