Bug#18310 Server compiled with yassl crash

- Add protection so that 'show_ssl_get_cipher_list' does not write after end of "buff"

Bug#18310 Server compiled with yassl crash
- Add protection so that 'show_ssl_get_cipher_list' does not write after end of "buff"
b248885b · msvensson@neptunus.(none) · 821e501f · b248885b
Commit b248885b authored Mar 21, 2006 by msvensson@neptunus.(none)
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 2 deletions

sql/mysqld.cc sql/mysqld.cc +4 -2

No files found.
--- a/sql/mysqld.cc
+++ b/sql/mysqld.cc
@@ -6600,9 +6600,11 @@ static int show_ssl_get_cipher_list(THD *thd, SHOW_VAR *var, char *buff)
  {
    int i;
    const char *p;
-    for (i=0 ; (p= SSL_get_cipher_list((SSL*) thd->net.vio->ssl_arg,i)); i++)
+    char *end= buff + SHOW_VAR_FUNC_BUFF_SIZE;
+    for (i=0; (p= SSL_get_cipher_list((SSL*) thd->net.vio->ssl_arg,i)) &&
+               buff < end; i++)
    {
-      buff= strmov(buff, p);
+      buff= strnmov(buff, p, end-buff-1);
      *buff++= ':';
    }
    if (i)