'[PECL-CVS] cvs: pecl(PECL_4_3) /sqlite sqlite.c /sqlite/tests sqlite_027.phpt'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       pecl-cvs
Subject:    [PECL-CVS] cvs: pecl(PECL_4_3) /sqlite sqlite.c  /sqlite/tests sqlite_027.phpt
From:       "Ilia Alshanetsky" <iliaa () php ! net>
Date:       2004-02-27 0:30:46
Message-ID: cvsiliaa1077841846 () cvsserver
[Download RAW message or body]

iliaa		Thu Feb 26 19:30:46 2004 EDT

  Added files:                 (Branch: PECL_4_3)
    /pecl/sqlite/tests	sqlite_027.phpt 

  Modified files:              
    /pecl/sqlite	sqlite.c 
  Log:
  MFH: Fixed possible crash inside sqlite_escape_string() and 
  sqlite_udf_encode_binary().
  
  
http://cvs.php.net/diff.php/pecl/sqlite/sqlite.c?r1=1.62.2.16&r2=1.62.2.17&ty=u
Index: pecl/sqlite/sqlite.c
diff -u pecl/sqlite/sqlite.c:1.62.2.16 pecl/sqlite/sqlite.c:1.62.2.17
--- pecl/sqlite/sqlite.c:1.62.2.16	Fri Jan 16 19:29:37 2004
+++ pecl/sqlite/sqlite.c	Thu Feb 26 19:30:45 2004
@@ -17,7 +17,7 @@
    |          Marcus Boerger <helly@php.net>                              |
    +----------------------------------------------------------------------+
 
-   $Id: sqlite.c,v 1.62.2.16 2004/01/17 00:29:37 edink Exp $ 
+   $Id: sqlite.c,v 1.62.2.17 2004/02/27 00:30:45 iliaa Exp $ 
 */
 
 #ifdef HAVE_CONFIG_H
@@ -669,7 +669,7 @@
 {
 	php_info_print_table_start();
 	php_info_print_table_header(2, "SQLite support", "enabled");
-	php_info_print_table_row(2, "PECL Module version", PHP_SQLITE_MODULE_VERSION " $Id: \
sqlite.c,v 1.62.2.16 2004/01/17 00:29:37 edink Exp $"); +	php_info_print_table_row(2, \
"PECL Module version", PHP_SQLITE_MODULE_VERSION " $Id: sqlite.c,v 1.62.2.17 \
2004/02/27 00:30:45 iliaa Exp $");  php_info_print_table_row(2, "SQLite Library", \
sqlite_libversion());  php_info_print_table_row(2, "SQLite Encoding", \
sqlite_libencoding());  php_info_print_table_end();
@@ -1736,7 +1736,7 @@
 		/* binary string */
 		int enclen;
 		
-		ret = emalloc( 1 + ((256 * stringlen + 1262) / 253) );
+		ret = emalloc( 1 + 5 + stringlen * (256 / 253) );
 		ret[0] = '\x01';
 		enclen = sqlite_encode_binary((const unsigned char*)string, stringlen, ret+1);
 		RETVAL_STRINGL(ret, enclen+1, 0);
@@ -1941,7 +1941,7 @@
 		int enclen;
 		char *ret;
 		
-		ret = emalloc( 1 + ((256 * datalen + 1262) / 253) );
+		ret = emalloc( 1 + 5 + datalen * (256 / 253) );
 		ret[0] = '\x01';
 		enclen = sqlite_encode_binary((const unsigned char*)data, datalen, ret+1);
 		RETVAL_STRINGL(ret, enclen+1, 0);

http://cvs.php.net/co.php/pecl/sqlite/tests/sqlite_027.phpt?r=1.1&p=1
Index: pecl/sqlite/tests/sqlite_027.phpt
+++ pecl/sqlite/tests/sqlite_027.phpt
--TEST--
sqlite: crash inside sqlite_escape_string() & sqlite_udf_encode_binary
--SKIPIF--
<?php # vim:ft=php
if (!extension_loaded("sqlite")) print "skip"; ?>
--FILE--
<?php
	var_dump(strlen(sqlite_escape_string(str_repeat("\0", 20000000))));
	var_dump(strlen(sqlite_udf_encode_binary(str_repeat("\0", 20000000))));
?>
--EXPECT--
int(20000002)
int(20000002)

-- 
PECL CVS Mailing List 
To unsubscribe, visit: http://www.php.net/unsub.php


[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic