clones/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2024-09-21 14:47:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Fixes to please lint checks.

Browse Source
This commit is contained in:
W.C.A. Wijngaards 2019-11-19 12:10:03 +01:00
parent 16bbfc3461
commit 79a6e9fbe2
10 changed files with 46 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
daemon/worker.c
View File

@ -1562,7 +1562,8 @@ send_reply_rc:
#endif #endif
if(worker->env.cfg->log_replies) if(worker->env.cfg->log_replies)
{ {
struct timeval tv = {0, 0}; struct timeval tv;
memset(&tv, 0, sizeof(tv));
if(qinfo.local_alias && qinfo.local_alias->rrset && if(qinfo.local_alias && qinfo.local_alias->rrset &&
qinfo.local_alias->rrset->rk.dname) { qinfo.local_alias->rrset->rk.dname) {
/* log original qname, before the local alias was /* log original qname, before the local alias was

36
dns64/dns64.c
View File

@ -195,12 +195,14 @@ uitoa(unsigned n, char* s)
* address. * address.
*/ */
static uint32_t static uint32_t
extract_ipv4(const uint8_t ipv6[16], const int offset) extract_ipv4(const uint8_t ipv6[], size_t ipv6_len, const int offset)
{ {
uint32_t ipv4 = (uint32_t)ipv6[offset/8+0] << (24 + (offset%8)) uint32_t ipv4;
| (uint32_t)ipv6[offset/8+1] << (16 + (offset%8)) log_assert(ipv6_len == 16); (void)ipv6_len;
| (uint32_t)ipv6[offset/8+2] << ( 8 + (offset%8)) ipv4 = (uint32_t)ipv6[offset/8+0] << (24 + (offset%8))
| (uint32_t)ipv6[offset/8+3] << ( 0 + (offset%8)); | (uint32_t)ipv6[offset/8+1] << (16 + (offset%8))
| (uint32_t)ipv6[offset/8+2] << ( 8 + (offset%8))
| (uint32_t)ipv6[offset/8+3] << ( 0 + (offset%8));
if (offset/8+4 < 16) if (offset/8+4 < 16)
ipv4 |= (uint32_t)ipv6[offset/8+4] >> (8 - offset%8); ipv4 |= (uint32_t)ipv6[offset/8+4] >> (8 - offset%8);
return ipv4; return ipv4;
@ -218,7 +220,7 @@ extract_ipv4(const uint8_t ipv6[16], const int offset)
* \return The number of characters written. * \return The number of characters written.
*/ */
static size_t static size_t
ipv4_to_ptr(uint32_t ipv4, char ptr[MAX_PTR_QNAME_IPV4]) ipv4_to_ptr(uint32_t ipv4, char ptr[], size_t nm_len)
{ {
static const char IPV4_PTR_SUFFIX[] = "\07in-addr\04arpa"; static const char IPV4_PTR_SUFFIX[] = "\07in-addr\04arpa";
int i; int i;
@ -227,9 +229,11 @@ ipv4_to_ptr(uint32_t ipv4, char ptr[MAX_PTR_QNAME_IPV4])
for (i = 0; i < 4; ++i) { for (i = 0; i < 4; ++i) {
*c = uitoa((unsigned int)(ipv4 % 256), c + 1); *c = uitoa((unsigned int)(ipv4 % 256), c + 1);
c += *c + 1; c += *c + 1;
log_assert(c < ptr+nm_len);
ipv4 /= 256; ipv4 /= 256;
} }
log_assert(c + sizeof(IPV4_PTR_SUFFIX) <= ptr+nm_len);
memmove(c, IPV4_PTR_SUFFIX, sizeof(IPV4_PTR_SUFFIX)); memmove(c, IPV4_PTR_SUFFIX, sizeof(IPV4_PTR_SUFFIX));
return c + sizeof(IPV4_PTR_SUFFIX) - ptr; return c + sizeof(IPV4_PTR_SUFFIX) - ptr;
@ -245,9 +249,10 @@ ipv4_to_ptr(uint32_t ipv4, char ptr[MAX_PTR_QNAME_IPV4])
* \return 1 on success, 0 on failure. * \return 1 on success, 0 on failure.
*/ */
static int static int
ptr_to_ipv6(const char* ptr, uint8_t ipv6[16]) ptr_to_ipv6(const char* ptr, uint8_t ipv6[], size_t ipv6_len)
{ {
int i; int i;
log_assert(ipv6_len == 16); (void)ipv6_len;
for (i = 0; i < 64; i++) { for (i = 0; i < 64; i++) {
int x; int x;
@ -280,9 +285,12 @@ ptr_to_ipv6(const char* ptr, uint8_t ipv6[16])
* \param aaaa IPv6 address. The result will be written here. * \param aaaa IPv6 address. The result will be written here.
*/ */
static void static void
synthesize_aaaa(const uint8_t prefix_addr[16], int prefix_net, synthesize_aaaa(const uint8_t prefix_addr[], size_t prefix_addr_len,
const uint8_t a[4], uint8_t aaaa[16]) int prefix_net, const uint8_t a[], size_t a_len, uint8_t aaaa[],
size_t aaaa_len)
{ {
log_assert(prefix_addr_len == 16 && a_len == 4 && aaaa_len == 16);
(void)prefix_addr_len; (void)a_len; (void)aaaa_len;
memcpy(aaaa, prefix_addr, 16); memcpy(aaaa, prefix_addr, 16);
aaaa[prefix_net/8+0] |= a[0] >> (0+prefix_net%8); aaaa[prefix_net/8+0] |= a[0] >> (0+prefix_net%8);
aaaa[prefix_net/8+1] |= a[0] << (8-prefix_net%8); aaaa[prefix_net/8+1] |= a[0] << (8-prefix_net%8);
@ -447,7 +455,8 @@ handle_ipv6_ptr(struct module_qstate* qstate, int id)
/* Convert the PTR query string to an IPv6 address. */ /* Convert the PTR query string to an IPv6 address. */
memset(&sin6, 0, sizeof(sin6)); memset(&sin6, 0, sizeof(sin6));
sin6.sin6_family = AF_INET6; sin6.sin6_family = AF_INET6;
if (!ptr_to_ipv6((char*)qstate->qinfo.qname, sin6.sin6_addr.s6_addr)) if (!ptr_to_ipv6((char*)qstate->qinfo.qname, sin6.sin6_addr.s6_addr,
sizeof(sin6.sin6_addr.s6_addr)))
return module_wait_module; /* Let other module handle this. */ return module_wait_module; /* Let other module handle this. */
/* /*
@ -470,7 +479,8 @@ handle_ipv6_ptr(struct module_qstate* qstate, int id)
if (!(qinfo.qname = regional_alloc(qstate->region, MAX_PTR_QNAME_IPV4))) if (!(qinfo.qname = regional_alloc(qstate->region, MAX_PTR_QNAME_IPV4)))
return module_error; return module_error;
qinfo.qname_len = ipv4_to_ptr(extract_ipv4(sin6.sin6_addr.s6_addr, qinfo.qname_len = ipv4_to_ptr(extract_ipv4(sin6.sin6_addr.s6_addr,
dns64_env->prefix_net), (char*)qinfo.qname); sizeof(sin6.sin6_addr.s6_addr), dns64_env->prefix_net),
(char*)qinfo.qname, MAX_PTR_QNAME_IPV4);
/* Create the new sub-query. */ /* Create the new sub-query. */
fptr_ok(fptr_whitelist_modenv_attach_sub(qstate->env->attach_sub)); fptr_ok(fptr_whitelist_modenv_attach_sub(qstate->env->attach_sub));
@ -740,8 +750,10 @@ dns64_synth_aaaa_data(const struct ub_packed_rrset_key* fk,
dd->rr_data[i][1] = 16; dd->rr_data[i][1] = 16;
synthesize_aaaa( synthesize_aaaa(
((struct sockaddr_in6*)&dns64_env->prefix_addr)->sin6_addr.s6_addr, ((struct sockaddr_in6*)&dns64_env->prefix_addr)->sin6_addr.s6_addr,
sizeof(((struct sockaddr_in6*)&dns64_env->prefix_addr)->sin6_addr.s6_addr),
dns64_env->prefix_net, &fd->rr_data[i][2], dns64_env->prefix_net, &fd->rr_data[i][2],
&dd->rr_data[i][2] ); fd->rr_len[i]-2, &dd->rr_data[i][2],
dd->rr_len[i]-2);
dd->rr_ttl[i] = fd->rr_ttl[i]; dd->rr_ttl[i] = fd->rr_ttl[i];
} }

1
doc/Changelog
View File

@ -2,6 +2,7 @@
- Fix CVE-2019-18934, shell execution in ipsecmod. - Fix CVE-2019-18934, shell execution in ipsecmod.
- 1.9.5 is 1.9.4 with bugfix, trunk is 1.9.6 in development. - 1.9.5 is 1.9.4 with bugfix, trunk is 1.9.6 in development.
- Fix authzone printout buffer length check. - Fix authzone printout buffer length check.
- Fixes to please lint checks.
18 November 2019: Wouter 18 November 2019: Wouter
- In unbound-host use separate variable for get_option to please - In unbound-host use separate variable for get_option to please

6
smallapp/unbound-anchor.c
View File

@ -355,7 +355,7 @@ read_cert_bio(BIO* bio)
exit(0); exit(0);
} }
while(!BIO_eof(bio)) { while(!BIO_eof(bio)) {
X509* x = PEM_read_bio_X509(bio, NULL, 0, NULL); X509* x = PEM_read_bio_X509(bio, NULL, NULL, NULL);
if(x == NULL) { if(x == NULL) {
if(verb) { if(verb) {
printf("failed to read X509\n"); printf("failed to read X509\n");
@ -396,7 +396,7 @@ read_cert_file(const char* file)
return NULL; return NULL;
} }
while(!feof(in)) { while(!feof(in)) {
X509* x = PEM_read_X509(in, NULL, 0, NULL); X509* x = PEM_read_X509(in, NULL, NULL, NULL);
if(x == NULL) { if(x == NULL) {
if(verb) { if(verb) {
printf("failed to read X509 file\n"); printf("failed to read X509 file\n");
@ -943,7 +943,7 @@ read_data_chunk(SSL* ssl, size_t len)
size_t got = 0; size_t got = 0;
int r; int r;
char* data; char* data;
if(len >= 0xfffffff0) if(len >= (size_t)0xfffffff0)
return NULL; /* to protect against integer overflow in malloc*/ return NULL; /* to protect against integer overflow in malloc*/
data = malloc(len+1); data = malloc(len+1);
if(!data) { if(!data) {

4
testcode/delayer.c
View File

@ -1042,7 +1042,7 @@ service(const char* bind_str, int bindport, const char* serv_str,
} }
i=0; i=0;
if(bindport == 0) { if(bindport == 0) {
bindport = 1024 + arc4random()%64000; bindport = 1024 + ((int)arc4random())%64000;
i = 100; i = 100;
} }
while(1) { while(1) {
@ -1058,7 +1058,7 @@ service(const char* bind_str, int bindport, const char* serv_str,
#endif #endif
if(i--==0) if(i--==0)
fatal_exit("cannot bind any port"); fatal_exit("cannot bind any port");
bindport = 1024 + arc4random()%64000; bindport = 1024 + ((int)arc4random())%64000;
} else break; } else break;
} }
fd_set_nonblock(s); fd_set_nonblock(s);

4
testcode/mini_tdir.sh
View File

@ -119,7 +119,11 @@ fi
# Copy # Copy
echo "minitdir copy $1 to $dir" echo "minitdir copy $1 to $dir"
mkdir $dir mkdir $dir
if cp --help 2>&1 | grep -- "-a" >/dev/null; then
cp -a $name.tdir/* $dir/ cp -a $name.tdir/* $dir/
else
cp -R $name.tdir/* $dir/
fi
cd $dir cd $dir
# EXE # EXE

2
testcode/streamtcp.c
View File

@ -314,7 +314,7 @@ static int get_random(void)
if (RAND_bytes((unsigned char*)&r, (int)sizeof(r)) == 1) { if (RAND_bytes((unsigned char*)&r, (int)sizeof(r)) == 1) {
return r; return r;
} }
return arc4random(); return (int)arc4random();
} }
/** send the TCP queries and print answers */ /** send the TCP queries and print answers */

4
util/shm_side/shm_main.c
View File

@ -223,8 +223,10 @@ void shm_main_run(struct worker *worker)
struct ub_stats_info *stat_info; struct ub_stats_info *stat_info;
int offset; int offset;
#ifndef S_SPLINT_S
verbose(VERB_DETAIL, "SHM run - worker [%d] - daemon [%p] - timenow(%u) - timeboot(%u)", verbose(VERB_DETAIL, "SHM run - worker [%d] - daemon [%p] - timenow(%u) - timeboot(%u)",
worker->thread_num, worker->daemon, (unsigned)worker->env.now_tv->tv_sec, (unsigned)worker->daemon->time_boot.tv_sec); worker->thread_num, worker->daemon, (unsigned)worker->env.now_tv->tv_sec, (unsigned)worker->daemon->time_boot.tv_sec);
#endif
offset = worker->thread_num + 1; offset = worker->thread_num + 1;
stat_total = worker->daemon->shm_info->ptr_arr; stat_total = worker->daemon->shm_info->ptr_arr;
@ -240,9 +242,11 @@ void shm_main_run(struct worker *worker)
memset(stat_total, 0, sizeof(struct ub_stats_info)); memset(stat_total, 0, sizeof(struct ub_stats_info));
/* Point to data into SHM */ /* Point to data into SHM */
#ifndef S_SPLINT_S
shm_stat = worker->daemon->shm_info->ptr_ctl; shm_stat = worker->daemon->shm_info->ptr_ctl;
shm_stat->time.now_sec = (long long)worker->env.now_tv->tv_sec; shm_stat->time.now_sec = (long long)worker->env.now_tv->tv_sec;
shm_stat->time.now_usec = (long long)worker->env.now_tv->tv_usec; shm_stat->time.now_usec = (long long)worker->env.now_tv->tv_usec;
#endif
stat_timeval_subtract(&shm_stat->time.up_sec, &shm_stat->time.up_usec, worker->env.now_tv, &worker->daemon->time_boot); stat_timeval_subtract(&shm_stat->time.up_sec, &shm_stat->time.up_usec, worker->env.now_tv, &worker->daemon->time_boot);
stat_timeval_subtract(&shm_stat->time.elapsed_sec, &shm_stat->time.elapsed_usec, worker->env.now_tv, &worker->daemon->time_last_stat); stat_timeval_subtract(&shm_stat->time.elapsed_sec, &shm_stat->time.elapsed_usec, worker->env.now_tv, &worker->daemon->time_last_stat);

2
util/ub_event.c
View File

@ -458,7 +458,9 @@ void ub_comm_base_now(struct comm_base* cb)
if(gettimeofday(tv, NULL) < 0) { if(gettimeofday(tv, NULL) < 0) {
log_err("gettimeofday: %s", strerror(errno)); log_err("gettimeofday: %s", strerror(errno));
} }
#ifndef S_SPLINT_S
*tt = tv->tv_sec; *tt = tv->tv_sec;
#endif
#endif /* USE_MINI_EVENT */ #endif /* USE_MINI_EVENT */
} }

4
util/ub_event_pluggable.c
View File

@ -453,7 +453,7 @@ ub_get_event_sys(struct ub_event_base* ub_base, const char** n, const char** s,
* ub_base is guaranteed to exist and to be the default * ub_base is guaranteed to exist and to be the default
* event base. * event base.
*/ */
assert(b); assert(b != NULL);
*n = "pluggable-event"; *n = "pluggable-event";
*s = event_get_version(); *s = event_get_version();
# if defined(HAVE_EV_LOOP) || defined(HAVE_EV_DEFAULT_LOOP) # if defined(HAVE_EV_LOOP) || defined(HAVE_EV_DEFAULT_LOOP)
@ -687,6 +687,8 @@ void ub_comm_base_now(struct comm_base* cb)
if(gettimeofday(tv, NULL) < 0) { if(gettimeofday(tv, NULL) < 0) {
log_err("gettimeofday: %s", strerror(errno)); log_err("gettimeofday: %s", strerror(errno));
} }
#ifndef S_SPLINT_S
*tt = tv->tv_sec; *tt = tv->tv_sec;
#endif
} }