Security fixes brought forward from 0.9.7.

commit: 54a656ef081f72a740c550ebd8099b40b8b5cde0 [log] [tgz]
author: Ben Laurie <ben@openssl.org> Wed Nov 13 15:43:43 2002 +0000
committer: Ben Laurie <ben@openssl.org> Wed Nov 13 15:43:43 2002 +0000
tree: 9b3638b56848c7f0648b84cfa7ad056116b37a1b
parent: 8f797f14b8ff7d3d5cb04443284259a0c94860b3 [diff] [blame]
diff --git a/ssl/ssltest.c b/ssl/ssltest.c
index 84b96e4..3718c13 100644
--- a/ssl/ssltest.c
+++ b/ssl/ssltest.c

@@ -754,10 +754,16 @@
 #ifndef OPENSSL_NO_KRB5
 	if (c_ssl  &&  c_ssl->kssl_ctx)
                 {
-                char	localhost[257];
+                char	localhost[MAXHOSTNAMELEN+2];
 
-		if (gethostname(localhost, 256) == 0)
+		if (gethostname(localhost, sizeof localhost-1) == 0)
                         {
+			localhost[sizeof localhost-1]='\0';
+			if(strlen(localhost) == sizeof localhost-1)
+				{
+				BIO_printf(bio_err,"localhost name too long\n");
+				got end;
+				}
 			kssl_ctx_setstring(c_ssl->kssl_ctx, KSSL_SERVER,
                                 localhost);
 			}
@@ -1518,7 +1524,8 @@
 	{
 	char *s,buf[256];
 
-	s=X509_NAME_oneline(X509_get_subject_name(ctx->current_cert),buf,256);
+	s=X509_NAME_oneline(X509_get_subject_name(ctx->current_cert),buf,
+			    sizeof buf);
 	if (s != NULL)
 		{
 		if (ok)
commit	54a656ef081f72a740c550ebd8099b40b8b5cde0	[log] [tgz]
author	Ben Laurie <ben@openssl.org>	Wed Nov 13 15:43:43 2002 +0000
committer	Ben Laurie <ben@openssl.org>	Wed Nov 13 15:43:43 2002 +0000
tree	9b3638b56848c7f0648b84cfa7ad056116b37a1b
parent	8f797f14b8ff7d3d5cb04443284259a0c94860b3 [diff] [blame]