/mandos/trunk : revision 1111

To get this branch, use:

bzr branch
http://bzr.recompile.se/loggerhead/mandos/trunk

« back to all changes in this revision

Viewing changes to plugins.d/password-prompt.c

Committer: Teddy Hogeborn
Date: 2019-07-14 22:39:15 UTC
Revision ID: teddy@recompile.se-20190714223915-aqjkms3t3taa6tye

Only use sanitizing options when debugging

The C compiler's sanitizing options introduce code in the output
binary which is fragile and not very security conscious.  It has
become clear that sanitizing is only really meant for use while
debugging.

As a side effect, this makes compilation faster, as the Makefile, for
production builds, no longer runs the compiler repeatedly to find all
its currently supported sanitizing options.

* Makefile (DEBUG): Add "$(SANITIZE)".
  (SANITIZE): Comment out.
  (CFLAGS): Remove "$(SANITIZE)".
  (plugins.d/mandos-client): Revert back to use plain $(LINK.c), since
                             we no longer need to remove the leak
                             sanitizer by overriding CFLAGS.

files modified:
Makefile

plugin-runner.c

plugins.d/password-prompt.c

Show diffs side-by-side

added added

removed removed

plugins.d/password-prompt.c

508

}

509

if(sret < 0){

510

int e = errno;

511

if(errno != EINTR and not feof(stdin)){

512

error_plus(0, errno, "getline");

513

switch(e){

514

case EBADF:

515

status = EX_UNAVAILABLE;

516

break;

517

case EIO:

518

case EINVAL:

519

default:

520

status = EX_IOERR;

521

break;

511

if(errno != EINTR){

512

if(not feof(stdin)){

513

error_plus(0, errno, "getline");

514

switch(e){

515

case EBADF:

516

status = EX_UNAVAILABLE;

517

break;

518

case EIO:

519

case EINVAL:

520

default:

521

status = EX_IOERR;

522

break;

523

}

524

break;

525

} else {

526

clearerr(stdin);

522

527

}

523

break;

524

528

}

525

529

}

526

530

/* if(sret == 0), then the only sensible thing to do is to retry

Older »