1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
|
#include "util.h"
void*
checkp(void *p)
{
if (!p) die("pointer assertion failed, OOM?\n");
return p;
}
void*
die(const char *fmtstr, ...)
{
va_list ap;
va_start(ap, fmtstr);
vfprintf(stderr, fmtstr, ap);
va_end(ap);
exit(EXIT_FAILURE);
}
char*
aprintf(const char *fmtstr, ...)
{
va_list ap, cpy;
size_t nb;
char *str;
va_copy(cpy, ap);
va_start(cpy, fmtstr);
nb = vsnprintf(NULL, 0, fmtstr, cpy);
va_end(cpy);
if (nb <= 0) die("Invalid fmtstr!\n");
str = checkp(malloc(nb+1));
va_start(ap, fmtstr);
nb = vsnprintf(str, nb+1, fmtstr, ap);
va_end(ap);
return str;
}
const char*
mhash(const char *str, int len)
{
static char buf[MHASHLEN + 1];
int i, k, v;
char c, *bp;
/* VULN #2: BUFFER OVERFLOW */
/* see documentation/README.md for more details */
if (len == -1) len = strlen(str);
for (v = 0, i = 0; i < len; i++) v += str[i];
srand(v);
for (bp = buf, i = 0; i < MHASHLEN / 2; i++)
bp += sprintf(bp, "%02x", str[i % len] ^ (rand() % 256));
return buf;
}
int
checkalph(const char *str, const char *alph)
{
int i;
for (i = 0; i < strlen(str); i++)
if (str[i] && !strchr(alph, str[i])) return 0;
return 1;
}
void
freadstr(FILE *f, char **dst)
{
size_t start, len, tmp;
char c;
/* VULN #1: BAD CAST */
/* see documentation/README.md for more details */
start = ftell(f);
for (len = 0; (c = fgetc(f)) != EOF && c; len++);
fseek(f, start, SEEK_SET);
*dst = checkp(calloc(1, len + 1));
tmp = fread(*dst, len, 1, f);
fgetc(f);
}
void
fputstr(FILE *f, char *s)
{
fprintf(f, "%s", s);
fputc(0, f);
}
const char*
ask(const char *fmtstr, ...)
{
static char linebuf[256];
va_list ap;
int fail;
va_start(ap, fmtstr);
vprintf(fmtstr, ap);
va_end(ap);
fail = !fgets(linebuf, sizeof(linebuf), stdin);
if (!fail && *linebuf) {
if (linebuf[strlen(linebuf)-1] == '\n')
linebuf[strlen(linebuf)-1] = '\0';
if (echo) printf("%s\n", linebuf);
}
if (fail) errno = EBADMSG;
return fail ? "" : linebuf;
}
void
dump(const char *filename)
{
char buf[256];
FILE *f;
int nb;
if (!(f = fopen(filename, "r"))) return;
while ((nb = fread(buf, 1, sizeof(buf) - 1, f)))
printf("%.*s\n", nb, buf);
fclose(f);
}
int
strpfcmp(const char *prefix, const char *str)
{
return strncmp(prefix, str, strlen(prefix));
}
|
