Fix likely stack buffer overflow

64b79790 · Rémi Denis-Courmont · 0627abcd · 64b79790
Commit 64b79790 authored Apr 29, 2006 by Rémi Denis-Courmont
Hide whitespace changes
Inline Side-by-side

Showing with 9 additions and 17 deletions

modules/control/http/mvar.c modules/control/http/mvar.c +9 -17

No files found.
--- a/modules/control/http/mvar.c
+++ b/modules/control/http/mvar.c
@@ -126,26 +126,18 @@ void E_(mvar_RemoveVar)( mvar_t *v, mvar_t *f )

 mvar_t *E_(mvar_GetVar)( mvar_t *s, const char *name )
 {
-    int i;
-    char base[512], *field, *p;
-    int  i_index;
-
    /* format: name[index].field */
-
-    field = strchr( name, '.' );
-    if( field )
-    {
-        int i = field - name;
-        strncpy( base, name, i );
-        base[i] = '\0';
+    char *field = strchr( name, '.' );
+    int i = 1 + (field != NULL) ? (field - name) : strlen( name );
+    char base[i];
+    char *p;
+    int i_index;
+
+    strlcpy( base, name, i );
+    if( field != NULL )
        field++;
-    }
-    else
-    {
-        strcpy( base, name );
-    }

-    if( ( p = strchr( base, '[' ) ) )
+    if( ( p = strchr( base, '[' ) ) != NULL )
    {
        *p++ = '\0';
        sscanf( p, "%d]", &i_index );