jdk-sandbox: comparison src/java.security.jgss/windows/native/libsspi

equal deleted inserted replaced

-:463c63f3497f
+:052b9d3f5366
 #include <windows.h>
 #include <stdlib.h>
 #include <stdio.h>
 #include <stdlib.h>
 #include <string.h>
+#include <Strsafe.h>
 #define GSS_DLL_FILE
-#include "gssapi.h"
+#include <gssapi.h>
 #define SECURITY_WIN32
-#include "sspi.h"
+#include <sspi.h>
 #pragma comment(lib, "secur32.lib")
 #define DEBUG
 delete out;
 return NULL;
 }
 out->phCred = NULL;
 out->cbMaxMessage = pkgInfo->cbMaxToken;
-wcscpy(out->PackageName, PackageName);
+wcscpy_s(out->PackageName, 20, PackageName);
 FreeContextBuffer(pkgInfo);
 return out;
 }
 int
 break;
 }
 }
 }
 name->name = value;
-lstrcpy(name->PackageName, isNegotiate ? L"Negotiate" : L"Kerberos"); // TODO
+wcscpy_s(name->PackageName, 20, isNegotiate ? L"Negotiate" : L"Kerberos"); // TODO
 *output_name = (gss_name_t) name;
 return GSS_S_COMPLETE;
 err:
 if (value != NULL) {
 delete[] value;
 names2->name = new SEC_WCHAR[lstrlen(names1->name) + 1];
 if (names2->name == NULL) {
 delete names2;
 return GSS_S_FAILURE;
 }
-wcscpy(names2->PackageName, isNegotiateOID(mech_type)
+wcscpy_s(names2->PackageName, 20, isNegotiateOID(mech_type)
 ? L"Negotiate" : L"Kerberos");
-lstrcpy(names2->name, names1->name);
+StringCchCopy(names2->name, lstrlen(names1->name) + 1, names1->name);
 *output_name = (gss_name_t)names2;
 return GSS_S_COMPLETE;
 }
 __declspec(dllexport) OM_uint32
 buffer[1] = 1;
 buffer[2] = 0;
 buffer[3] = 2 + mechLen;
 buffer[4] = 6;
 buffer[5] = mechLen;
-memcpy(buffer + 6, mech == 'K' ? KRB5_OID.elements : SPNEGO_OID.elements, 9);
+memcpy_s(buffer + 6, mechLen, mech == 'K' ? KRB5_OID.elements : SPNEGO_OID.elements, mechLen);
 buffer[6 + mechLen] = buffer[7 + mechLen] = buffer[8 + mechLen] = 0;
 buffer[9 + mechLen] = (char)len;
 if (WideCharToMultiByte(CP_ACP, 0, names, len,
 buffer+10+mechLen, len, NULL, NULL) == 0) {
 delete buffer;
 cred->count = (int)desired_mech->count;
 cred->creds = new OneCred[cred->count];
 for (int i = 0; i < cred->count; i++) {
 TCHAR* name = isKerberosOID(&desired_mech->elements[i])
 ? L"Kerberos" : L"Negotiate";
-wcscpy(cred->creds[i].PackageName, name);
+wcscpy_s(cred->creds[i].PackageName, 20, name);
 cred->creds[i].phCred = new CredHandle();
 ts.QuadPart = 0;
 ss = AcquireCredentialsHandle(
 NULL,
 name,
 }
 SEC_WCHAR* names = new SEC_WCHAR[lstrlen(snames.sUserName) + 1];
 if (names == NULL) {
 return GSS_S_FAILURE;
 }
-lstrcpy(names, snames.sUserName);
+StringCchCopy(names, lstrlen(snames.sUserName) + 1, snames.sUserName);
 FreeContextBuffer(&snames);
 PP("new name at %p", names);
 Name* name1 = new Name;
 if (name1 == NULL) {
 delete[] names;
 return GSS_S_FAILURE;
 }
 name1->name = names;
-lstrcpy(name1->PackageName, ((Credential*)cred_handle)->creds[0].PackageName);
+wcscpy_s(name1->PackageName, 20, ((Credential*)cred_handle)->creds[0].PackageName);
 *name = (gss_name_t) name1;
 }
 if (lifetime) {
 *lifetime = ((Credential*)cred_handle)->time;
 }
 output_token->length =  OutSecBuff.cbBuffer;
 pfDone = !((SEC_I_CONTINUE_NEEDED == ss) ||
 (SEC_I_COMPLETE_AND_CONTINUE == ss));
 outFlag = flagSspi2Gss(outFlag);
+PP("Done? %d outFlag: %d", pfDone, outFlag);
 *ret_flags = (OM_uint32)outFlag;
 if (ss == SEC_I_CONTINUE_NEEDED) {
 return GSS_S_CONTINUE_NEEDED;
 } else {
 n1->name = new SEC_WCHAR[lstrlen(pc->nnames.sClientName) + 1];
 if (n1->name == NULL) {
 goto err;
 }
 PP("new name at %p", n1->name);
-lstrcpy(n1->name, pc->nnames.sClientName);
+StringCchCopy(n1->name, lstrlen(pc->nnames.sClientName) + 1, pc->nnames.sClientName);
-lstrcpy(n1->PackageName, pc->PackageName);
+wcscpy_s(n1->PackageName, 20, pc->PackageName);
 *src_name = (gss_name_t) n1;
 }
 if (targ_name != NULL) {
 n2 = new Name;
 if (n2 == NULL) {
 n2->name = new SEC_WCHAR[lstrlen(pc->nnames.sServerName) + 1];
 if (n2->name == NULL) {
 goto err;
 }
 PP("new name at %p", n2->name);
-lstrcpy(n2->name, pc->nnames.sServerName);
+StringCchCopy(n2->name, lstrlen(pc->nnames.sServerName) + 1, pc->nnames.sServerName);
-lstrcpy(n2->PackageName, pc->PackageName);
+wcscpy_s(n2->PackageName, 20, pc->PackageName);
 *targ_name = (gss_name_t) n2;
 }
 if (lifetime_rec != NULL) {
 SecPkgContext_Lifespan ls;
 SECURITY_STATUS ss;
 + pc->SecPkgContextSizes.cbBlockSize);;
 SecBuff[1].BufferType = SECBUFFER_DATA;
 SecBuff[1].cbBuffer = (ULONG)input_message_buffer->length;
 SecBuff[1].pvBuffer = malloc(SecBuff[1].cbBuffer);
-memcpy(SecBuff[1].pvBuffer, input_message_buffer->value,
+memcpy_s(SecBuff[1].pvBuffer, SecBuff[1].cbBuffer,
-input_message_buffer->length);
+input_message_buffer->value, input_message_buffer->length);
 SecBuff[2].BufferType = SECBUFFER_PADDING;
 SecBuff[2].cbBuffer = pc->SecPkgContextSizes.cbBlockSize;
 SecBuff[2].pvBuffer = malloc(SecBuff[2].cbBuffer);
 free(SecBuff[1].pvBuffer);
 free(SecBuff[2].pvBuffer);
 return GSS_S_FAILURE;
 }
-memcpy((PBYTE)SecBuff[0].pvBuffer + SecBuff[0].cbBuffer, SecBuff[1].pvBuffer,
+memcpy_s((PBYTE)SecBuff[0].pvBuffer + SecBuff[0].cbBuffer,
+input_message_buffer->length + pc->SecPkgContextSizes.cbBlockSize,
+SecBuff[1].pvBuffer,
 SecBuff[1].cbBuffer);
-memcpy((PBYTE)SecBuff[0].pvBuffer + SecBuff[0].cbBuffer + SecBuff[1].cbBuffer,
+memcpy_s((PBYTE)SecBuff[0].pvBuffer + SecBuff[0].cbBuffer + SecBuff[1].cbBuffer,
-SecBuff[2].pvBuffer, SecBuff[2].cbBuffer);
+pc->SecPkgContextSizes.cbBlockSize,
+SecBuff[2].pvBuffer,
+SecBuff[2].cbBuffer);
 output_message_buffer->length = SecBuff[1].cbBuffer + SecBuff[0].cbBuffer
 + SecBuff[2].cbBuffer;
 free(SecBuff[1].pvBuffer);
 free(SecBuff[2].pvBuffer);
 SecBuff[0].BufferType = SECBUFFER_STREAM;
 SecBuff[0].cbBuffer = (ULONG)input_message_buffer->length;
 output_message_buffer->value = SecBuff[0].pvBuffer
 = malloc(input_message_buffer->length);
-memcpy(SecBuff[0].pvBuffer, input_message_buffer->value,
+memcpy_s(SecBuff[0].pvBuffer, input_message_buffer->length,
-input_message_buffer->length);
+input_message_buffer->value, input_message_buffer->length);
 SecBuff[1].BufferType = SECBUFFER_DATA;
 SecBuff[1].cbBuffer = 0;
 SecBuff[1].pvBuffer = NULL;
 gss_OID newcopy = new gss_OID_desc[count + 1];
 if (newcopy == NULL) {
 return GSS_S_FAILURE;
 }
 if (existing) {
-memcpy(newcopy, existing, count * sizeof(gss_OID_desc));
+memcpy_s(newcopy, (count + 1) * sizeof(gss_OID_desc),
+existing, count * sizeof(gss_OID_desc));
 }
 newcopy[count].length = member_oid->length;
 newcopy[count].elements = new char[member_oid->length];
 if (newcopy[count].elements == NULL) {
 delete[] newcopy;
 return GSS_S_FAILURE;
 }
-memcpy(newcopy[count].elements, member_oid->elements, member_oid->length);
+memcpy_s(newcopy[count].elements, member_oid->length,
+member_oid->elements, member_oid->length);
 (*oid_set)->elements = newcopy;
 (*oid_set)->count++;
 if (existing) {
 delete[] existing;
 }
 OM_uint32 *message_context,
 gss_buffer_t status_string)
 {
 PP(">>>> Calling UNIMPLEMENTED gss_display_status...");
 status_string->value = new char[7];
-memcpy(status_string->value, "Nothing", 7);
+memcpy_s(status_string->value, 7, "Nothing", 7);
 status_string->length = 7;
 return GSS_S_COMPLETE;
 }
 __declspec(dllexport) OM_uint32

branch	JDK-8199569-branch
changeset 56638	052b9d3f5366
parent 56632	463c63f3497f