Fix broken interface to set_namearray() - don't modify incoming string.

diff --git a/source3/include/proto.h b/source3/include/proto.h
index 60a34d1164ff674473ddd48794de9383d600ec64..2305a7ac6871601312e564bd16b26ffbc14f7b4a 100644 (file)
--- a/source3/include/proto.h
+++ b/source3/include/proto.h
@@ -649,7 +649,7 @@ void smb_panic_s3(const char *why);
 void log_stack_trace(void);
 const char *readdirname(SMB_STRUCT_DIR *p);
 bool is_in_path(const char *name, name_compare_entry *namelist, bool case_sensitive);
-void set_namearray(name_compare_entry **ppname_array, char *namelist);
+void set_namearray(name_compare_entry **ppname_array, const char *namelist);
 void free_namearray(name_compare_entry *name_array);
 bool fcntl_lock(int fd, int op, SMB_OFF_T offset, SMB_OFF_T count, int type);
 bool fcntl_getlock(int fd, SMB_OFF_T *poffset, SMB_OFF_T *pcount, int *ptype, pid_t *ppid);

diff --git a/source3/lib/util.c b/source3/lib/util.c
index b0b6377087831cd5dc00bd99fa6255a9c7c62224..db92f3c0d7ad2a360e87b1726aae3a89568c106c 100644 (file)
--- a/source3/lib/util.c
+++ b/source3/lib/util.c
@@ -1314,25 +1314,31 @@ bool is_in_path(const char *name, name_compare_entry *namelist, bool case_sensit
  passing to is_in_path(). We do this for
  speed so we can pre-parse all the names in the list 
  and don't do it for each call to is_in_path().
- namelist is modified here and is assumed to be 
- a copy owned by the caller.
  We also check if the entry contains a wildcard to
  remove a potentially expensive call to mask_match
  if possible.
 ********************************************************************/
 
-void set_namearray(name_compare_entry **ppname_array, char *namelist)
+void set_namearray(name_compare_entry **ppname_array, const char *namelist_in)
 {
        char *name_end;
-       char *nameptr = namelist;
+       char *namelist;
+       char *nameptr;
        int num_entries = 0;
        int i;
 
        (*ppname_array) = NULL;
 
-       if((nameptr == NULL ) || ((nameptr != NULL) && (*nameptr == '\0'))) 
+       if((namelist_in == NULL ) || ((namelist_in != NULL) && (*namelist_in == '\0'))) 
                return;
 
+       namelist = talloc_strdup(talloc_tos(), namelist_in);
+       if (namelist == NULL) {
+               DEBUG(0,("set_namearray: talloc fail\n"));
+               return;
+       }
+       nameptr = namelist;
+
        /* We need to make two passes over the string. The
                first to count the number of elements, the second
                to split it.
@@ -1358,11 +1364,14 @@ void set_namearray(name_compare_entry **ppname_array, char *namelist)
                num_entries++;
        }
 
-       if(num_entries == 0)
+       if(num_entries == 0) {
+               talloc_free(namelist);
                return;
+       }
 
        if(( (*ppname_array) = SMB_MALLOC_ARRAY(name_compare_entry, num_entries + 1)) == NULL) {
                DEBUG(0,("set_namearray: malloc fail\n"));
+               talloc_free(namelist);
                return;
        }
 
@@ -1389,6 +1398,7 @@ void set_namearray(name_compare_entry **ppname_array, char *namelist)
                (*ppname_array)[i].is_wild = ms_has_wild(nameptr);
                if(((*ppname_array)[i].name = SMB_STRDUP(nameptr)) == NULL) {
                        DEBUG(0,("set_namearray: malloc fail (1)\n"));
+                       talloc_free(namelist);
                        return;
                }
 
@@ -1399,6 +1409,7 @@ void set_namearray(name_compare_entry **ppname_array, char *namelist)
 
        (*ppname_array)[i].name = NULL;
 
+       talloc_free(namelist);
        return;
 }
 

diff --git a/source3/modules/vfs_preopen.c b/source3/modules/vfs_preopen.c
index 82969e48d6a9631b8235c084586eb7aa26450213..e4b3a0c43580d537aac32c9a95ef18309b95a479 100644 (file)
--- a/source3/modules/vfs_preopen.c
+++ b/source3/modules/vfs_preopen.c
@@ -322,7 +322,7 @@ static struct preopen_state *preopen_state_get(vfs_handle_struct *handle)
                return NULL;
        }
 
-       set_namearray(&state->preopen_names, (char *)namelist);
+       set_namearray(&state->preopen_names, namelist);
 
        if (state->preopen_names == NULL) {
                TALLOC_FREE(state);