Check socket path length in OS_CreateLocalIpcFd() and OS_FcgiConnect()

If passed binPath argument is longer than MAXPATHLEN, we will write
passed the buffer. This patch fixes it.

diff --git a/libfcgi/os_unix.c b/libfcgi/os_unix.c
index 41b717a..5e49bc4 100755 (executable)
--- a/libfcgi/os_unix.c
+++ b/libfcgi/os_unix.c
@@ -286,6 +286,12 @@ int OS_CreateLocalIpcFd(const char *bindPath, int backlog)
     short   port = 0;
     char    host[MAXPATHLEN];
 
+    if (strlen(bindPath) >= MAXPATHLEN) {
+           fprintf(stderr,
+            "Listening socket path is longer than %d bytes -- exiting!\n",
+            MAXPATHLEN);
+           exit(1);
+    }
     strcpy(host, bindPath);
     if((tp = strchr(host, ':')) != 0) {
        *tp++ = 0;
@@ -389,6 +395,10 @@ int OS_FcgiConnect(char *bindPath)
     short   port = 0;
     int            tcp = FALSE;
 
+    if (strlen(bindPath) >= MAXPATHLEN) {
+           fprintf(stderr, "Listening socket path is too long\n");
+           exit(1000);
+    }
     strcpy(host, bindPath);
     if((tp = strchr(host, ':')) != 0) {
        *tp++ = 0;