libxtables: Avoid calling memcpy() with NULL source

Both affected functions check if 'oldopts' is NULL once but later seem to ignore that possibility. To catch up on that, increment the pointer only if it isn't NULL, also don't copy its content into the merged options buffer in that case. Signed-off-by: Phil Sutter <phil@nwl.cc> Signed-off-by: Florian Westphal <fw@strlen.de>
author: Phil Sutter <phil@nwl.cc> 2018-09-19 15:16:54 +0200
committer: Florian Westphal <fw@strlen.de> 2018-09-24 11:24:07 +0200
commit: ab639f236ff85d2f447cc6601c7ff42cefdaf853 (patch)
tree: b23ee42ed99ecdadd5c329b311c0de06f3a17289 /libxtables/xtoptions.c
parent: 22ef371abeeec789bb6a701352dcb961556595c2 (diff)
1 files changed, 8 insertions, 4 deletions
diff --git a/libxtables/xtoptions.c b/libxtables/xtoptions.c
index 326febd5..05887a05 100644
--- a/libxtables/xtoptions.c
+++ b/libxtables/xtoptions.c
@@ -91,8 +91,10 @@ xtables_options_xfrm(struct option *orig_opts, struct option *oldopts,
 	 * Since @oldopts also has @orig_opts already (and does so at the
 	 * start), skip these entries.
 	 */
-	oldopts += num_orig;
-	num_old -= num_orig;
+	if (oldopts != NULL) {
+		oldopts += num_orig;
+		num_old -= num_orig;
+	}
 
 	merge = malloc(sizeof(*mp) * (num_orig + num_old + num_new + 1));
 	if (merge == NULL)
@@ -114,8 +116,10 @@ xtables_options_xfrm(struct option *orig_opts, struct option *oldopts,
 	}
 
 	/* Third, the old options */
-	memcpy(mp, oldopts, sizeof(*mp) * num_old);
-	mp += num_old;
+	if (oldopts != NULL) {
+		memcpy(mp, oldopts, sizeof(*mp) * num_old);
+		mp += num_old;
+	}
 	xtables_free_opts(0);
 
 	/* Clear trailing entry */
author	Phil Sutter <phil@nwl.cc>	2018-09-19 15:16:54 +0200
committer	Florian Westphal <fw@strlen.de>	2018-09-24 11:24:07 +0200
commit	ab639f236ff85d2f447cc6601c7ff42cefdaf853 (patch)
tree	b23ee42ed99ecdadd5c329b311c0de06f3a17289 /libxtables/xtoptions.c
parent	22ef371abeeec789bb6a701352dcb961556595c2 (diff)