top: Prevent out-of-bounds writes in PUFF(). __Tweaked
This commit moves some overhead to the Batch mode path
where it's needed. And given the new 'else if' test we
can delete some now redundant logic in the other path.
Reference(s):
. original qualys patch
0117-top-Prevent-out-of-bounds-writes-in-PUFF.patch
commit 059ae8b512
Signed-off-by: Jim Warner <james.warner@comcast.net>
This commit is contained in:
parent
d34c6eb5b4
commit
129b7e2b44
@ -546,14 +546,13 @@ typedef struct WIN_t {
|
|||||||
. assumed to represent a complete screen ROW
|
. assumed to represent a complete screen ROW
|
||||||
. subject to optimization, thus MAY be discarded */
|
. subject to optimization, thus MAY be discarded */
|
||||||
#define PUFF(fmt,arg...) do { \
|
#define PUFF(fmt,arg...) do { \
|
||||||
char _str[ROWMAXSIZ], *_eol; \
|
char _str[ROWMAXSIZ]; \
|
||||||
const int _len = snprintf(_str, sizeof(_str), fmt, ## arg); \
|
const int _len = snprintf(_str, sizeof(_str), fmt, ## arg); \
|
||||||
_eol = _str + (_len < 0 ? 0 : (size_t)_len >= sizeof(_str) ? sizeof(_str)-1 : (size_t)_len); \
|
|
||||||
if (Batch) { \
|
if (Batch) { \
|
||||||
|
char *_eol = _str + (_len < 0 ? 0 : (size_t)_len >= sizeof(_str) ? sizeof(_str)-1 : (size_t)_len); \
|
||||||
while (_eol > _str && _eol[-1] == ' ') _eol--; *_eol = '\0'; putp(_str); } \
|
while (_eol > _str && _eol[-1] == ' ') _eol--; *_eol = '\0'; putp(_str); } \
|
||||||
else if (Pseudo_row >= 0 && Pseudo_row < Screen_rows) { \
|
else if (Pseudo_row >= 0 && Pseudo_row < Screen_rows) { \
|
||||||
char *_ptr = &Pseudo_screen[Pseudo_row * ROWMAXSIZ]; \
|
char *_ptr = &Pseudo_screen[Pseudo_row++ * ROWMAXSIZ]; \
|
||||||
if (Pseudo_row + 1 < Screen_rows) ++Pseudo_row; \
|
|
||||||
if (!strcmp(_ptr, _str)) putp("\n"); \
|
if (!strcmp(_ptr, _str)) putp("\n"); \
|
||||||
else { \
|
else { \
|
||||||
strcpy(_ptr, _str); \
|
strcpy(_ptr, _str); \
|
||||||
|
Loading…
Reference in New Issue
Block a user