../../../../libs/xmlrpc-c/src/xmlrpc

Bug Summary

File:	src/mod/xml_int/mod_xml_rpc/../../../../libs/xmlrpc-c/src/xmlrpc_authcookie.c
Location:	line 67, column 10
Description:	Access to field 'fault_occurred' results in a dereference of a null pointer (loaded from variable 'envP')

Annotated Source Code

** Redistribution and use in source and binary forms, with or without

** modification, are permitted provided that the following conditions

** are met:

** 1. Redistributions of source code must retain the above copyright

** notice, this list of conditions and the following disclaimer.

** 2. Redistributions in binary form must reproduce the above copyright

** notice, this list of conditions and the following disclaimer in the

** documentation and/or other materials provided with the distribution.

** 3. The name of the author may not be used to endorse or promote products

** derived from this software without specific prior written permission.

** THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND

** ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

** IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE

** ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE

** FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL

** DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS

** OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

** HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT

** LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY

** OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF

** SUCH DAMAGE. */

#include "xmlrpc_config.h"

#include <stdlib.h>

#include <stdio.h>

#include <string.h>

#include "mallocvar.h"

#include "xmlrpc-c/base.h"

/*****************************************************************************

I don't see how these were expected to be used. And I probably

broke it somehow at some point by removing code from somewhere else.

But I doubt that, whatever it's supposed to do, environment

variables are the right tool.

Note that on a platform that doesn't have SETENV,

xmlrpc_authcookie_set() is just a no-op.

-Bryan 2005.06.10

****************************************************************************/

void

xmlrpc_authcookie_set(xmlrpc_env * const envP,

const char * const username,

const char * const password) {

char * unencoded;

xmlrpc_mem_block * token;

XMLRPC_ASSERT_ENV_OK(envP)do if (!((envP) != ((void*)0) && (envP->fault_string
== ((void*)0)) && !(envP)->fault_occurred)) xmlrpc_assertion_failed
("../../../../libs/xmlrpc-c/src/xmlrpc_authcookie.c", 55); while
(0);

Within the expansion of the macro 'XMLRPC_ASSERT_ENV_OK':

→

a	Assuming 'envP' is equal to null

XMLRPC_ASSERT_PTR_OK(username)do if (!((username) != ((void*)0))) xmlrpc_assertion_failed("../../../../libs/xmlrpc-c/src/xmlrpc_authcookie.c"
, 56); while (0);

XMLRPC_ASSERT_PTR_OK(password)do if (!((password) != ((void*)0))) xmlrpc_assertion_failed("../../../../libs/xmlrpc-c/src/xmlrpc_authcookie.c"
, 57); while (0);

/* Create unencoded string/hash. */

MALLOCARRAY(unencoded,(strlen(username) + strlen(password) + 1 + 1))do { void * array; mallocProduct(&array, (strlen(username
) + strlen(password) + 1 + 1), sizeof(unencoded[0])); unencoded
= array; } while (0);

sprintf(unencoded, "%s:%s", username, password);

/* Create encoded string. */

token = xmlrpc_base64_encode_without_newlines(

envP, (unsigned char *)unencoded, strlen(unencoded));

if (!envP->fault_occurred) {

←

Access to field 'fault_occurred' results in a dereference of a null pointer (loaded from variable 'envP')

/* Set HTTP_COOKIE_AUTH to the character representation of the

encoded string.

#if HAVE_SETENV1

setenv("HTTP_COOKIE_AUTH",

XMLRPC_MEMBLOCK_CONTENTS(char, token)((char*) xmlrpc_mem_block_contents(token)),

1);

#endif

xmlrpc_mem_block_free(token);

}

free(unencoded);

}

char *xmlrpc_authcookie ( void ) {

return getenv("HTTP_COOKIE_AUTH");

}