diff options
| author | Judd Vinet <judd@archlinux.org> | 2004-07-02 00:17:52 +0000 | 
|---|---|---|
| committer | Judd Vinet <judd@archlinux.org> | 2004-07-02 00:17:52 +0000 | 
| commit | b2290a1dd4ca481986fcd1f83f999828c405caa0 (patch) | |
| tree | b93e80acc2bf49a22a2a198225b91727c94487ac | |
| parent | d2686502b928b98f6dad9ec13786973ef095ef8d (diff) | |
enforced line lengths from stdin
| -rw-r--r-- | pkgdb2.c | 13 | 
1 files changed, 11 insertions, 2 deletions
| @@ -1,4 +1,4 @@ -/* $Id: pkgdb2.c,v 1.2 2004/07/01 20:26:27 judd Exp $ */ +/* $Id: pkgdb2.c,v 1.3 2004/07/02 00:17:52 judd Exp $ */  #include <stdio.h>  #include <stdlib.h> @@ -28,7 +28,7 @@ MYSQL_RES *doquery(MYSQL *m, const char* q)   * returns, and they probably won't be freed by the caller.   */  char* addslashes(const char *s) { -	char slashed[4096]; +	char slashed[8192];  	char *p;  	slashed[0] = '\0'; @@ -136,6 +136,15 @@ int main(int argc, char **argv)  		fgets(url, 256, stdin);      trim(url);     if(feof(stdin)) continue;  		fgets(sources, 4096, stdin); trim(sources); if(feof(stdin)) continue;  		fgets(deplist, 4096, stdin); trim(deplist); if(feof(stdin)) continue; +		/* check for overruns */ +		if(strlen(name) > 254 || strlen(ver) >= 254 || strlen(rel) > 254 || +				strlen(desc) > 4094 || strlen(cat) >= 254 || strlen(url) > 254 || +				strlen(sources) > 4094 || strlen(deplist) > 4094) { +			fprintf(stderr, "pkgdb2: one or more fields are too long in package '%s'\n", name); +			fprintf(stderr, "pkgdb2: check the lengths of your strings, most are limited " +					"to 255 chars, some are 4095\n"); +			return(1); +		}  		/* add the node to the list */  		if(pkglist == NULL) {  			pkglist = (pkg_t*)malloc(sizeof(pkg_t)); | 
