Show
Ignore:
Timestamp:
06/08/09 21:12:46 (3 years ago)
Author:
Neutron Soutmun <neo.neutron@…>
Children:
bae014d9f22e13f6115d53d154e6489f20ae00e4
Parents:
5987af1b79b0c1fbd4aa9d30a53ec6879853ece3
git-committer:
Neutron Soutmun <neo.neutron@…> (06/08/09 21:12:46)
Message:

Follow the flawfinder guideline

  • Reduce the vulnerability code by follow the advice of flawfinder.
  • Just finish one of the TODO lists.
Files:
1 modified

Legend:

Unmodified
Added
Removed

  • src/rh-task-dbset.c

    raace70f r927d0c7  
    294294                 GDA_CONNECTION_OPTIONS_READ_ONLY, NULL); 
    295295 
    296   sprintf(select_cmd, "SELECT * FROM dbset WHERE vserver_id='%d'", 
    297           vs->vserver_config->vserver_id); 
     296  snprintf(select_cmd, sizeof (select_cmd),  
     297           "SELECT * FROM dbset WHERE vserver_id='%d'", 
     298           vs->vserver_config->vserver_id); 
    298299 
    299300  DP("SQL: %s", select_cmd); 
     
    343344  member = (struct rahunas_member *) member_node->data; 
    344345 
    345   sprintf(startsess_cmd, "INSERT INTO dbset" 
     346  snprintf(startsess_cmd, sizeof (startsess_cmd), "INSERT INTO dbset" 
    346347         "(session_id,vserver_id,username,ip,mac,session_start," 
    347348         "session_timeout,bandwidth_slot_id,bandwidth_max_down," 
     
    394395  DP("SessionID : %s", member->session_id); 
    395396 
    396   sprintf(stopsess_cmd, "DELETE FROM dbset WHERE " 
     397  snprintf(stopsess_cmd, sizeof (stopsess_cmd), "DELETE FROM dbset WHERE " 
    397398         "session_id='%s' AND username='%s' AND vserver_id='%d'", 
    398399         member->session_id,