cifs: sanitize username handling Currently, it's not very clear whether you're allowed to have a NULL vol->username or ses->user_name. Some places check for it and some don't. Make it clear that a NULL pointer is OK in these fields, and ensure that all the callers check for that. Signed-off-by: Jeff Layton <jlayton@redhat.com> Signed-off-by: Steve French <smfrench@gmail.com>

commit: 04febabcf55beeffb8794a0d8c539e571bd2ae29 [log] [tgz]
author: Jeff Layton <jlayton@redhat.com> Tue Jan 17 16:09:15 2012 -0500
committer: Steve French <smfrench@gmail.com> Tue Jan 17 22:40:26 2012 -0600
tree: 8727fdf5c811bab3d164293488cd5e1a3816276c
parent: 9f6ed2ca257fa8650b876377833e6f14e272848b [diff] [blame]
diff --git a/fs/cifs/cifsencrypt.c b/fs/cifs/cifsencrypt.c
index 5d9b9ac..bce99e6 100644
--- a/fs/cifs/cifsencrypt.c
+++ b/fs/cifs/cifsencrypt.c

@@ -420,15 +420,20 @@
 	}
 
 	/* convert ses->user_name to unicode and uppercase */
-	len = strlen(ses->user_name);
+	len = ses->user_name ? strlen(ses->user_name) : 0;
 	user = kmalloc(2 + (len * 2), GFP_KERNEL);
 	if (user == NULL) {
 		cERROR(1, "calc_ntlmv2_hash: user mem alloc failure\n");
 		rc = -ENOMEM;
 		return rc;
 	}
-	len = cifs_strtoUCS((__le16 *)user, ses->user_name, len, nls_cp);
-	UniStrupr(user);
+
+	if (len) {
+		len = cifs_strtoUCS((__le16 *)user, ses->user_name, len, nls_cp);
+		UniStrupr(user);
+	} else {
+		memset(user, '\0', 2);
+	}
 
 	rc = crypto_shash_update(&ses->server->secmech.sdeschmacmd5->shash,
 				(char *)user, 2 * len);
commit	04febabcf55beeffb8794a0d8c539e571bd2ae29	[log] [tgz]
author	Jeff Layton <jlayton@redhat.com>	Tue Jan 17 16:09:15 2012 -0500
committer	Steve French <smfrench@gmail.com>	Tue Jan 17 22:40:26 2012 -0600
tree	8727fdf5c811bab3d164293488cd5e1a3816276c
parent	9f6ed2ca257fa8650b876377833e6f14e272848b [diff] [blame]