git.baikalelectronics.ru Git - kernel.git/commit

author	Eric Biggers <ebiggers@google.com>
	Fri, 8 Dec 2017 15:13:28 +0000 (15:13 +0000)
committer	David Howells <dhowells@redhat.com>
	Fri, 8 Dec 2017 15:13:28 +0000 (15:13 +0000)
commit	fdc2ea0627e20ae86b0a59c5b9778a8a8adfd7c5
tree	7ef7646ed93f622533c61b0290fecb43cec8853e	tree \| snapshot
parent	0243067ff10163c88d7b23722c57858e030f710c	commit \| diff

X.509: fix buffer overflow detection in sprint_oid()

In sprint_oid(), if the input buffer were to be more than 1 byte too
small for the first snprintf(), 'bufsize' would underflow, causing a
buffer overflow when printing the remainder of the OID.

Fortunately this cannot actually happen currently, because no users pass
in a buffer that can be too small for the first snprintf().

Regardless, fix it by checking the snprintf() return value correctly.

For consistency also tweak the second snprintf() check to look the same.

Fixes: fb5551d9cc4f ("X.509: Add utility functions to render OIDs as strings")
Cc: Takashi Iwai <tiwai@suse.de>
Signed-off-by: Eric Biggers <ebiggers@google.com>
Signed-off-by: David Howells <dhowells@redhat.com>
Reviewed-by: James Morris <james.l.morris@oracle.com>