alloc-util: add strdupa_safe() + strndupa_safe() and use it everywhere

Let's define two helpers strdupa_safe() + strndupa_safe() which do the same as their non-safe counterparts, except that they abort if called with allocations larger than ALLOCA_MAX. This should ensure that all our alloca() based allocations are subject to this limit. afaics glibc offers three alloca() based APIs: alloca() itself, strndupa() + strdupa(). With this we have now replacements for all of them, that take the limit into account.
author: Lennart Poettering <lennart@poettering.net> 2021-10-13 12:38:37 +0200
committer: Lennart Poettering <lennart@poettering.net> 2021-10-14 15:57:52 +0200
commit: 2f82562bad423d1190912a4b209647dfac966db2 (patch)
tree: 766d61a085ee9674d8034351a83f64bcdf5d45bb /src/socket-proxy
parent: 5222651ecc6f46391e5e0d9cf19793bfe65b0ec8 (diff)
download: systemd-2f82562bad423d1190912a4b209647dfac966db2.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/src/socket-proxy/socket-proxyd.c b/src/socket-proxy/socket-proxyd.c
index be0be91f3e..aba483449a 100644
--- a/src/socket-proxy/socket-proxyd.c
+++ b/src/socket-proxy/socket-proxyd.c
@@ -438,7 +438,8 @@ static int resolve_remote(Connection *c) {
 
         service = strrchr(arg_remote_host, ':');
         if (service) {
-                node = strndupa(arg_remote_host, service - arg_remote_host);
+                node = strndupa_safe(arg_remote_host,
+                                     service - arg_remote_host);
                 service++;
         } else {
                 node = arg_remote_host;
author	Lennart Poettering <lennart@poettering.net>	2021-10-13 12:38:37 +0200
committer	Lennart Poettering <lennart@poettering.net>	2021-10-14 15:57:52 +0200
commit	2f82562bad423d1190912a4b209647dfac966db2 (patch)
tree	766d61a085ee9674d8034351a83f64bcdf5d45bb /src/socket-proxy
parent	5222651ecc6f46391e5e0d9cf19793bfe65b0ec8 (diff)
download	systemd-2f82562bad423d1190912a4b209647dfac966db2.tar.gz