CGI in C: getenv("CONTENT_LENGTH")

Tue, 30 May 2006 03:12:47 -0700 

Sorry if this is too simple. It's still ongoing learning process for me.

I dare to ask about it on misc@ because the code will be running on OpenBSD and
because I want to  learn how to use OpenBSD properly.

Its about getenv("CONTENT_LENGTH"); usage from C. I have found two sources on t
hat, but I am not able to understand the differences and to determine which code
is better, safer.

http://www.cs.tut.fi/~jkorpela/forms/cgic.html

char *lenstr;
char input[MAXINPUT], data[MAXINPUT];
long len;
printf("%s%c%c\n","Content-Type:text/html;charset=iso-8859-1",13,10);
lenstr = getenv("CONTENT_LENGTH");
if(lenstr == NULL || sscanf(lenstr,"%ld",&len)!=1 || len > MAXLEN)
 printf("<P>Error in invocation - blah blah");
else {
 FILE *f;
 fgets(input, len+1, stdin);
 <.....>

http://www.coding-zone.co.uk/cpp/cgi/170401cgicpp.shtml

main()
  {
  char *endptr;
  int i;
  double contentlength;
  char buff[10000];
  const char *len1 = getenv("CONTENT_LENGTH");
  contentlength=strtol(len1, &endptr, 10);
  fread(buff, contentlength, 1, stdin);
  }



To be specific:

1. I do not get why the first example uses only
lenstr = getenv("CONTENT_LENGTH");

while the second example goes through all of that conversion of the
getenv("CONTENT_LENGTH") result from string to decimal number:
  const char *len1 = getenv("CONTENT_LENGTH");
  contentlength=strtol(len1, &endptr, 10);
  fread(buff, contentlength, 1, stdin);



2. In the CGI context, do fgets(input, len+1, stdin) and
fread(buff, contentlength, 1, stdin) make a difference?


3. Is the code
if(lenstr == NULL || sscanf(lenstr,"%ld",&len)!=1 || len > MAXLEN)
 printf("<P>Error in invocation - blah blah");
else {
 FILE *f;
 fgets(input, len+1, stdin);
 <.....>

enough to prevent from the httpd buffer overflow attacks on the default
OpenBSD httpd? I do understand that this question in particular is a
broad one, but still - any comments or ideas would help as I am new to
this.



Reading httpd src or manuals did not explained the differences in the logic
of differences in those two code snippets (well at least so far).


Any help would be really appreciated.



Vladas

Reply via email to