X-Git-Url: https://git.exim.org/exim.git/blobdiff_plain/1f922db1c8e98bf5931dfb7ade9b5e0fd022b619..15ae19f96fb9e6c7262fd4f69049e97e9403f4c8:/src/src/exim_dbmbuild.c diff --git a/src/src/exim_dbmbuild.c b/src/src/exim_dbmbuild.c index 2d4bc3b6a..afd5095db 100644 --- a/src/src/exim_dbmbuild.c +++ b/src/src/exim_dbmbuild.c @@ -1,10 +1,8 @@ -/* $Cambridge: exim/src/src/exim_dbmbuild.c,v 1.3 2005/06/14 10:32:01 ph10 Exp $ */ - /************************************************* * Exim - an Internet mail transport agent * *************************************************/ -/* Copyright (c) University of Cambridge 1995 - 2005 */ +/* Copyright (c) University of Cambridge 1995 - 2018 */ /* See the file NOTICE for conditions of use and distribution. */ @@ -32,6 +30,7 @@ characters. */ #include "exim.h" +uschar * spool_directory = NULL; /* dummy for dbstuff.h */ #define max_insize 20000 #define max_outsize 100000 @@ -39,7 +38,7 @@ characters. */ /* This is global because it's defined in the headers and compilers grumble if it is made static. */ -uschar *hex_digits = US"0123456789abcdef"; +const uschar *hex_digits = CUS"0123456789abcdef"; #ifdef STRERROR_FROM_ERRLIST @@ -90,10 +89,10 @@ Returns: the value of the character escape */ int -string_interpret_escape(uschar **pp) +string_interpret_escape(const uschar **pp) { int ch; -uschar *p = *pp; +const uschar *p = *pp; ch = *(++p); if (isdigit(ch) && ch != '8' && ch != '9') { @@ -151,8 +150,9 @@ EXIM_DB *d; EXIM_DATUM key, content; uschar *bptr; uschar keybuffer[256]; -uschar temp_dbmname[256]; -uschar real_dbmname[256]; +uschar temp_dbmname[512]; +uschar real_dbmname[512]; +uschar dirname[512]; uschar *buffer = malloc(max_outsize); uschar *line = malloc(max_insize); @@ -195,19 +195,34 @@ if (Ustrcmp(argv[arg], argv[arg+1]) == 0) } #endif +/* Check length of filename; allow for adding .dbmbuild_temp and .db or +.dir/.pag later. */ + +if (strlen(argv[arg+1]) > sizeof(temp_dbmname) - 20) + { + printf("exim_dbmbuild: output filename is ridiculously long\n"); + exit(1); + } + Ustrcpy(temp_dbmname, argv[arg+1]); Ustrcat(temp_dbmname, ".dbmbuild_temp"); +Ustrcpy(dirname, temp_dbmname); +if ((bptr = Ustrrchr(dirname, '/'))) + *bptr = '\0'; +else + Ustrcpy(dirname, "."); + /* It is apparently necessary to open with O_RDWR for this to work with gdbm-1.7.3, though no reading is actually going to be done. */ -EXIM_DBOPEN(temp_dbmname, O_RDWR|O_CREAT|O_EXCL, 0644, &d); +EXIM_DBOPEN(temp_dbmname, dirname, O_RDWR|O_CREAT|O_EXCL, 0644, &d); if (d == NULL) { printf("exim_dbmbuild: unable to create %s: %s\n", temp_dbmname, strerror(errno)); - fclose(f); + (void)fclose(f); exit(1); } @@ -234,7 +249,8 @@ while (Ufgets(line, max_insize, f) != NULL) if (len >= max_insize - 1 && p[-1] != '\n') { printf("Overlong line read: max permitted length is %d\n", max_insize - 1); - return 1; + yield = 2; + goto TIDYUP; } if (line[0] == '#') continue; @@ -260,7 +276,8 @@ while (Ufgets(line, max_insize, f) != NULL) { printf("Continued set of lines is too long: max permitted length is %d\n", max_outsize -1); - return 1; + yield = 2; + goto TIDYUP; } Ustrcpy(bptr, s); @@ -320,7 +337,7 @@ while (Ufgets(line, max_insize, f) != NULL) keystart = t; while (*s != 0 && *s != '\"') { - if (*s == '\\') *t++ = string_interpret_escape(&s); + if (*s == '\\') *t++ = string_interpret_escape((const uschar **)&s); else *t++ = *s; s++; } @@ -404,7 +421,7 @@ if (started) TIDYUP: EXIM_DBCLOSE(d); -fclose(f); +(void)fclose(f); /* If successful, output the number of entries and rename the temporary files. */ @@ -469,9 +486,11 @@ if (yield == 0 || yield == 1) else { printf("dbmbuild abandoned\n"); - #if defined(USE_DB) || defined(USE_TDB) || defined(USE_GDBM) +#if defined(USE_DB) || defined(USE_TDB) || defined(USE_GDBM) + /* We created it, so safe to delete despite the name coming from outside */ + /* coverity[tainted_string] */ Uunlink(temp_dbmname); - #else +#else if (is_db) { sprintf(CS real_dbmname, "%s.db", temp_dbmname); @@ -484,7 +503,7 @@ else sprintf(CS real_dbmname, "%s.pag", temp_dbmname); Uunlink(real_dbmname); } - #endif /* USE_DB || USE_TDB */ +#endif /* USE_DB || USE_TDB */ } return yield;