diff options
author | sangwan.kwon <sangwan.kwon@samsung.com> | 2016-07-29 15:41:26 +0900 |
---|---|---|
committer | sangwan.kwon <sangwan.kwon@samsung.com> | 2016-08-01 13:42:07 +0900 |
commit | f732baaeb6fc2e9872696cb381b90b8c523d0c53 (patch) | |
tree | f60b7f7af36fd3892dfbbb9e5934ea6ca4b4cc71 /src/openssl | |
parent | 0f64042b733dfc42709af8a38d21679060c239af (diff) | |
download | xmlsec1-f732baaeb6fc2e9872696cb381b90b8c523d0c53.tar.gz xmlsec1-f732baaeb6fc2e9872696cb381b90b8c523d0c53.tar.bz2 xmlsec1-f732baaeb6fc2e9872696cb381b90b8c523d0c53.zip |
Replace vulnerable function to thread safety
* rand() -> rand_r()
* strcpy() -> strncpy()
* sprintf() -> snprintf()
* strerror() -> strerror_r()
Change-Id: Ib6d91ac0f5c75a54b3be5546ba281c53b1844828
Signed-off-by: sangwan.kwon <sangwan.kwon@samsung.com>
Diffstat (limited to 'src/openssl')
-rw-r--r-- | src/openssl/app.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/openssl/app.c b/src/openssl/app.c index 373e03a8..8e519883 100644 --- a/src/openssl/app.c +++ b/src/openssl/app.c @@ -1631,7 +1631,8 @@ xmlSecOpenSSLDummyPasswordCallback(char *buf, int bufsize, return(-1); } - strcpy(buf, password); + strncpy(buf, password, strlen(password) + 1); + return (strlen(buf)); } |