Merge of rpc parse buffer underflow debug code.

(This used to be commit c8d88713d9f7a646eb3b8e76bdd0250a3b89b722)
author: Tim Potter <tpot@samba.org> 2000-10-18 01:15:05 +0000
committer: Tim Potter <tpot@samba.org> 2000-10-18 01:15:05 +0000
commit: 282930d31f83e658573d1582d2ac89c98616ee2d (patch)
tree: b8aa2cc820176f20581f214ae839592fed4fa9a5 /source3/rpc_server
parent: 60661e1d28056222753c37995ed3401acf28e747 (diff)
download: samba-282930d31f83e658573d1582d2ac89c98616ee2d.tar.gz
samba-282930d31f83e658573d1582d2ac89c98616ee2d.tar.bz2
samba-282930d31f83e658573d1582d2ac89c98616ee2d.zip
1 files changed, 19 insertions, 0 deletions
diff --git a/source3/rpc_server/srv_pipe.c b/source3/rpc_server/srv_pipe.c
index fd5155a554..4cb57c69d8 100644
--- a/source3/rpc_server/srv_pipe.c
+++ b/source3/rpc_server/srv_pipe.c
@@ -1207,6 +1207,25 @@ BOOL api_rpcTNP(pipes_struct *p, char *rpc_name,
 
 	DEBUG(5,("api_rpcTNP: called %s successfully\n", rpc_name));
 
+	/* Check for buffer underflow in rpc parsing */
+
+	if ((DEBUGLEVEL >= 10) && 
+	    (p->in_data.data.data_offset != p->in_data.data.buffer_size)) {
+		int data_len = p->in_data.data.buffer_size - 
+			p->in_data.data.data_offset;
+		char *data;
+
+		data = malloc(data_len);
+
+		DEBUG(10, ("api_rpcTNP: rpc input buffer underflow (parse error?)\n"));
+		if (data) {
+			prs_uint8s(False, "", &p->in_data.data, 0, data,
+				   data_len);
+			free(data);
+		}
+
+	}
+
 	return True;
 }
author	Tim Potter <tpot@samba.org>	2000-10-18 01:15:05 +0000
committer	Tim Potter <tpot@samba.org>	2000-10-18 01:15:05 +0000
commit	282930d31f83e658573d1582d2ac89c98616ee2d (patch)
tree	b8aa2cc820176f20581f214ae839592fed4fa9a5 /source3/rpc_server
parent	60661e1d28056222753c37995ed3401acf28e747 (diff)
download	samba-282930d31f83e658573d1582d2ac89c98616ee2d.tar.gz samba-282930d31f83e658573d1582d2ac89c98616ee2d.tar.bz2 samba-282930d31f83e658573d1582d2ac89c98616ee2d.zip