s3:smbd: return NT_STATUS_INFO_LENGTH_MISMATCH for GetInfo in case output_buffer_leng...

author Ralph Wuerthner <ralph.wuerthner@de.ibm.com>

Wed, 10 Jul 2013 06:59:58 +0000 (08:59 +0200)

committer Karolin Seeger <kseeger@samba.org>

Fri, 6 Sep 2013 08:49:49 +0000 (10:49 +0200)
author Ralph Wuerthner <ralph.wuerthner@de.ibm.com>
Wed, 10 Jul 2013 06:59:58 +0000 (08:59 +0200)
committer Karolin Seeger <kseeger@samba.org>
Fri, 6 Sep 2013 08:49:49 +0000 (10:49 +0200)
diff --git a/source3/smbd/smb2_getinfo.c b/source3/smbd/smb2_getinfo.c

index 55071e8745a24e9d3c8d015b649bfaadc44143a6..30daaadd302cc7c2ea3aa7fbdf7ddaac09550357 100644 (file)
--- a/source3/smbd/smb2_getinfo.c
+++ b/source3/smbd/smb2_getinfo.c
@@ -485,6 +485,11 @@ static struct tevent_req *smbd_smb2_getinfo_send(TALLOC_CTX *mem_ctx,
                 return tevent_req_post(req, ev);
         }
  
+       if (state->out_output_buffer.length > in_output_buffer_length) {
+               tevent_req_nterror(req, NT_STATUS_INFO_LENGTH_MISMATCH);
+               return tevent_req_post(req, ev);
+       }
+
         tevent_req_done(req);
         return tevent_req_post(req, ev);
  }
author	Ralph Wuerthner <ralph.wuerthner@de.ibm.com>
	Wed, 10 Jul 2013 06:59:58 +0000 (08:59 +0200)
committer	Karolin Seeger <kseeger@samba.org>
	Fri, 6 Sep 2013 08:49:49 +0000 (10:49 +0200)