jens/flipper
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Set null-terminator after strncpy

Browse Source 
Summary: When the length of `pkcs12.second.c_str()` is equal to `length`, strncpy won't write a null-terminator at the end of the destination string, making the destination unsafe to read and potentially cause an overflow.

Reviewed By: lblasa

Differential Revision: D46934320

fbshipit-source-id: 5e7acd49523b80105bcc47471facd9ff23b8a2b8
This commit is contained in:
Octavian Guzu
2023-07-03 04:41:02 -07:00
committed by Facebook GitHub Bot
parent 54b7d8feea
commit 71751855df
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
iOS/FlipperKit/FlipperWebSocket.mm
View File

@@ -92,6 +92,7 @@ void FlipperWebSocket::connect(FlipperConnectionManager* manager) {
return std::string(""); return std::string("");
} }
strncpy(password, pkcs12.second.c_str(), length); strncpy(password, pkcs12.second.c_str(), length);
password[length - 1] = '\0';
return pkcs12.first; return pkcs12.first;
}; };
} }