Home Explore 引导页 在线工具 Blog
Register Sign In
Pchen0
/
ccan
mirror of https://git.ozlabs.org/~ccan/ccan
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Fix theoretical problem with 0-length records.
By faking them out to length 1, we might go oob. Just fake the malloc.

Rusty Russell 16 years ago
parent
6d35d746f1
commit
195b605e88
1 changed files with 1 additions and 5 deletions
Split View Show Diff Stats
  1. 1 5
      ccan/tdb/io.c

+ 1 - 5
ccan/tdb/io.c
View File 

@@ -383,11 +383,7 @@ unsigned char *tdb_alloc_read(struct tdb_context *tdb, tdb_off_t offset, tdb_len
 
 	unsigned char *buf;
 
 
 	/* some systems don't like zero length malloc */
 
-	if (len == 0) {
 
-		len = 1;
 
-	}
 
-
 
-	if (!(buf = (unsigned char *)malloc(len))) {
 
+	if (!(buf = (unsigned char *)malloc(len ? len : 1))) {
 
 		/* Ensure ecode is set for log fn. */
 
 		tdb->ecode = TDB_ERR_OOM;
 
 		TDB_LOG((tdb, TDB_DEBUG_ERROR,"tdb_alloc_read malloc failed len=%d (%s)\n",