Expansions: Fix crash in crypteq: On OpenBSD a bad second-arg

author Jeremy Harris <jgh146exb@wizmail.org>

Mon, 11 Jan 2016 15:50:22 +0000 (15:50 +0000)

committer Jeremy Harris <jgh146exb@wizmail.org>

Mon, 11 Jan 2016 15:50:22 +0000 (15:50 +0000)
author Jeremy Harris <jgh146exb@wizmail.org>
Mon, 11 Jan 2016 15:50:22 +0000 (15:50 +0000)
committer Jeremy Harris <jgh146exb@wizmail.org>
Mon, 11 Jan 2016 15:50:22 +0000 (15:50 +0000)
diff --git a/src/src/expand.c b/src/src/expand.c

index f144a756118cecd7f0716f34860d62b22606d840..2966c22c626f33316616d7cbc8500652f408a972 100644 (file)
--- a/src/src/expand.c
+++ b/src/src/expand.c
@@ -2791,7 +2791,7 @@ switch(cond_type)
        #define XSTR(s) STR(s)
        DEBUG(D_auth) debug_printf("crypteq: using %s()\n"
          "  subject=%s\n  crypted=%s\n",
-        (which == 0)? XSTR(DEFAULT_CRYPT) : (which == 1)? "crypt" : "crypt16",
+        which == 0 ? XSTR(DEFAULT_CRYPT) : which == 1 ? "crypt" : "crypt16",
          coded, sub[1]);
        #undef STR
        #undef XSTR
@@ -2800,8 +2800,16 @@ switch(cond_type)
        salt), force failure. Otherwise we get false positives: with an empty
        string the yield of crypt() is an empty string! */
  
-      tempcond = (Ustrlen(sub[1]) < 2)? FALSE :
-        (Ustrcmp(coded, sub[1]) == 0);
+      if (coded)
+       tempcond = Ustrlen(sub[1]) < 2 ? FALSE : Ustrcmp(coded, sub[1]) == 0;
+      else if (errno == EINVAL)
+       tempcond = FALSE;
+      else
+       {
+       expand_string_message = string_sprintf("crypt error: %s\n",
+         US strerror(errno));
+       return NULL;
+       }
        }
      break;
      #endif  /* SUPPORT_CRYPTEQ */
author	Jeremy Harris <jgh146exb@wizmail.org>
	Mon, 11 Jan 2016 15:50:22 +0000 (15:50 +0000)
committer	Jeremy Harris <jgh146exb@wizmail.org>
	Mon, 11 Jan 2016 15:50:22 +0000 (15:50 +0000)