cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: [PATCH] Missing NULL strdup() check in multi.c:1327

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Fri, 21 Aug 2009 09:35:34 +0200 (CEST)

On Wed, 19 Aug 2009, Andre Guibert de Bruet wrote:

> There appears to be a missing NULL-allocation check in multi_runsingle() for
> the newurl parameter that is passed to Curl_retry_request() (Where the
> allocation is actually performed). Presently, this NULL pointer ends up
> being passed to sscanf() in is_absolute_url(), through the Curl_follow()
> call.
>
> The attached patch addresses the issue. Could it be committed upon review?

Ah yes, thanks.

I think the patch was a bit too simple and bailed out a little too much upon
that error. I took this somewhat further and poked the Curl_retry_request()
function to properly return an error code instead and then the change ends up
somewhat larger. See my attached patch. Oh, and also the code in CVS changed
a bit with johansen's pipelining fixes so this probably won't apply to
anything that isn't pretty much CVS HEAD

Comments anyone?

-- 
  / daniel.haxx.se

TEXT/x-diff attachment: curl-retry_request-check.patch

Received on 2009-08-21

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: "100% CPU usage during SFTP transfer" bugfix"
Previous message: Daniel Stenberg: "Re: set custom http header with no value without quote"
In reply to: Andre Guibert de Bruet: "[PATCH] Missing NULL strdup() check in multi.c:1327"
Next in thread: Andre Guibert de Bruet: "Re: [PATCH] Missing NULL strdup() check in multi.c:1327"
Reply: Andre Guibert de Bruet: "Re: [PATCH] Missing NULL strdup() check in multi.c:1327"
Reply: johansen_at_sun.com: "Re: [PATCH] Missing NULL strdup() check in multi.c:1327"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]