nginx: src/os/unix/ngx_user.c annotate

annotate src/os/unix/ngx_user.c @ 5050:f9a29f401770 stable-1.2

Merge of r4983: crypt_r() error handling fixed. The crypt_r() function returns NULL on errors, check it explicitly instead of assuming errno will remain 0 if there are no errors (per POSIX, the setting of errno after a successful call to a function is unspecified unless the description of that function specifies that errno shall not be modified). Additionally, dropped unneeded ngx_set_errno(0) and fixed error handling of memory allocation after normal crypt(), which was inapropriate and resulted in null pointer dereference on allocation failures.

author	Maxim Dounin <mdounin@mdounin.ru>
date	Mon, 11 Feb 2013 12:37:06 +0000
parents	778ef9c3fd2d
children	fd6fd02f6a4d

rev	line source
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	1
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	2 /*
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	3 * Copyright (C) Igor Sysoev
4412 d620f497c50f Copyright updated. Maxim Konovalov <maxim@nginx.com> parents: 3922 diff changeset	4 * Copyright (C) Nginx, Inc.
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	5 */
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	6
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	7
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	8 #include <ngx_config.h>
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	9 #include <ngx_core.h>
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	10
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	11
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	12 /*
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	13 * Solaris has thread-safe crypt()
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	14 * Linux has crypt_r(); "struct crypt_data" is more than 128K
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	15 * FreeBSD needs the mutex to protect crypt()
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	16 *
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	17 * TODO:
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	18 * ngx_crypt_init() to init mutex
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	19 */
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	20
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	21
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	22 #if (NGX_CRYPT)
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	23
527 7fa11e5c6e96 nginx-0.1.38-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 509 diff changeset	24 #if (NGX_HAVE_GNU_CRYPT_R)
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	25
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	26 ngx_int_t
3922 9c057d5e1c27 "$apr1", "{PLAIN}", and "{SSHA}" password methods in auth basic module Igor Sysoev <igor@sysoev.ru> parents: 3796 diff changeset	27 ngx_libc_crypt(ngx_pool_t pool, u_char key, u_char salt, u_char *encrypted)
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	28 {
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	29 char *value;
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	30 size_t len;
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	31 struct crypt_data cd;
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	32
509 9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	33 cd.initialized = 0;
529 e5d7d0334fdb nginx-0.1.39-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 527 diff changeset	34 /* work around the glibc bug */
e5d7d0334fdb nginx-0.1.39-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 527 diff changeset	35 cd.current_salt[0] = ~salt[0];
509 9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	36
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	37 value = crypt_r((char ) key, (char ) salt, &cd);
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	38
5050 f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	39 if (value) {
3796 7dec2852e8fd allocate last zero byte in ngx_crypt() Igor Sysoev <igor@sysoev.ru> parents: 2049 diff changeset	40 len = ngx_strlen(value) + 1;
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	41
2049 2a92804f4109 ) back out r2040 Igor Sysoev <igor@sysoev.ru>* parents: 529 diff changeset	42 *encrypted = ngx_pnalloc(pool, len);
5050 f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	43 if (*encrypted == NULL) {
f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	44 return NGX_ERROR;
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	45 }
5050 f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	46
f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	47 ngx_memcpy(*encrypted, value, len);
f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	48 return NGX_OK;
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	49 }
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	50
5050 f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	51 ngx_log_error(NGX_LOG_CRIT, pool->log, ngx_errno, "crypt_r() failed");
509 9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	52
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	53 return NGX_ERROR;
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	54 }
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	55
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	56 #else
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	57
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	58 ngx_int_t
3922 9c057d5e1c27 "$apr1", "{PLAIN}", and "{SSHA}" password methods in auth basic module Igor Sysoev <igor@sysoev.ru> parents: 3796 diff changeset	59 ngx_libc_crypt(ngx_pool_t pool, u_char key, u_char salt, u_char *encrypted)
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	60 {
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	61 char *value;
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	62 size_t len;
509 9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	63 ngx_err_t err;
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	64
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	65 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	66
4499 778ef9c3fd2d Fixed spelling in single-line comments. Ruslan Ermilov <ru@nginx.com> parents: 4412 diff changeset	67 /* crypt() is a time consuming function, so we only try to lock */
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	68
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	69 if (ngx_mutex_trylock(ngx_crypt_mutex) != NGX_OK) {
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	70 return NGX_AGAIN;
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	71 }
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	72
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	73 #endif
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	74
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	75 value = crypt((char ) key, (char ) salt);
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	76
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	77 if (value) {
3796 7dec2852e8fd allocate last zero byte in ngx_crypt() Igor Sysoev <igor@sysoev.ru> parents: 2049 diff changeset	78 len = ngx_strlen(value) + 1;
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	79
2049 2a92804f4109 ) back out r2040 Igor Sysoev <igor@sysoev.ru>* parents: 529 diff changeset	80 *encrypted = ngx_pnalloc(pool, len);
5050 f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	81 if (*encrypted == NULL) {
f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	82 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	83 ngx_mutex_unlock(ngx_crypt_mutex);
f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	84 #endif
f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	85 return NGX_ERROR;
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	86 }
509 9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	87
5050 f9a29f401770 Merge of r4983: crypt_r() error handling fixed. Maxim Dounin <mdounin@mdounin.ru> parents: 4499 diff changeset	88 ngx_memcpy(*encrypted, value, len);
509 9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	89 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	90 ngx_mutex_unlock(ngx_crypt_mutex);
9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	91 #endif
9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	92 return NGX_OK;
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	93 }
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	94
509 9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	95 err = ngx_errno;
9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	96
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	97 #if (NGX_THREADS && NGX_NONREENTRANT_CRYPT)
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	98 ngx_mutex_unlock(ngx_crypt_mutex);
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	99 #endif
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	100
509 9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	101 ngx_log_error(NGX_LOG_CRIT, pool->log, err, "crypt() failed");
9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	102
9b8c906f6e63 nginx-0.1.29-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: 503 diff changeset	103 return NGX_ERROR;
503 b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	104 }
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	105
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	106 #endif
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	107
b1648294f693 nginx-0.1.26-RELEASE import Igor Sysoev <igor@sysoev.ru> parents: diff changeset	108 #endif /* NGX_CRYPT */

Mercurial > hg > nginx

annotate src/os/unix/ngx_user.c @ 5050:f9a29f401770 stable-1.2