Fix return types of password API helper functions.

ircmaxell · ircmaxell · commit 83e3466898ab · 2013-08-21T12:10:40.000-04:00
This fixes issues that were found during static analysis by cjones where failure was impossible to detect due to return type mangling (casting an int to a char, then comparing to an int).
diff --git a/NEWS b/NEWS
@@ -21,6 +21,10 @@ PHP                                                                        NEWS
   . Fixed bug #51127/#65359 Request #25630/#43980/#54383 (Added php_serialize 
     session serialize handler that uses plain serialize()). (Yasuo)
 
+- Standard:
+  . Fix issue with return types of password API helper functions. Found via static
+    analysis by cjones. (Anthony Ferrara) 
+
 22 Aug 2013, PHP 5.5.3
 
 - Openssl:
diff --git a/ext/standard/password.c b/ext/standard/password.c
@@ -66,20 +66,20 @@ static php_password_algo php_password_determine_algo(const char *hash, const siz
 	return PHP_PASSWORD_UNKNOWN;
 }
 
-static zend_bool php_password_salt_is_alphabet(const char *str, const size_t len) /* {{{ */
+static int php_password_salt_is_alphabet(const char *str, const size_t len) /* {{{ */
 {
 	size_t i = 0;
 
 	for (i = 0; i < len; i++) {
 		if (!((str[i] >= 'A' && str[i] <= 'Z') || (str[i] >= 'a' && str[i] <= 'z') || (str[i] >= '0' && str[i] <= '9') || str[i] == '.' || str[i] == '/')) {
-			return 0;
+			return FAILURE;
 		}
 	}
-	return 1;
+	return SUCCESS;
 }
 /* }}} */
 
-static zend_bool php_password_salt_to64(const char *str, const size_t str_len, const size_t out_len, char *ret) /* {{{ */
+static int php_password_salt_to64(const char *str, const size_t str_len, const size_t out_len, char *ret) /* {{{ */
 {
 	size_t pos = 0;
 	size_t ret_len = 0;
@@ -108,7 +108,7 @@ static zend_bool php_password_salt_to64(const char *str, const size_t str_len, c
 }
 /* }}} */
 
-static zend_bool php_password_make_salt(size_t length, char *ret TSRMLS_DC) /* {{{ */
+static int php_password_make_salt(size_t length, char *ret TSRMLS_DC) /* {{{ */
 {
 	int buffer_valid = 0;
 	size_t i, raw_length;
@@ -395,7 +395,7 @@ PHP_FUNCTION(password_hash)
 			efree(buffer);
 			php_error_docref(NULL TSRMLS_CC, E_WARNING, "Provided salt is too short: %lu expecting %lu", (unsigned long) buffer_len, (unsigned long) required_salt_len);
 			RETURN_NULL();
-		} else if (0 == php_password_salt_is_alphabet(buffer, buffer_len)) {
+		} else if (php_password_salt_is_alphabet(buffer, buffer_len) == FAILURE) {
 			salt = safe_emalloc(required_salt_len, 1, 1);
 			if (php_password_salt_to64(buffer, buffer_len, required_salt_len, salt) == FAILURE) {
 				efree(hash_format);

Original file line number	Diff line number	Diff line change
`@@ -66,20 +66,20 @@ static php_password_algo php_password_determine_algo(const char *hash, const siz`
`66`	`66`	`return PHP_PASSWORD_UNKNOWN;`
`67`	`67`	`}`
`68`	`68`
`69`		`-static zend_bool php_password_salt_is_alphabet(const char str, const size_t len) / {{{ */`
	`69`	`+static int php_password_salt_is_alphabet(const char str, const size_t len) / {{{ */`
`70`	`70`	`{`
`71`	`71`	`size_t i = 0;`
`72`	`72`
`73`	`73`	`for (i = 0; i < len; i++) {`
`74`	`74`	`if (!((str[i] >= 'A' && str[i] <= 'Z') \|\| (str[i] >= 'a' && str[i] <= 'z') \|\| (str[i] >= '0' && str[i] <= '9') \|\| str[i] == '.' \|\| str[i] == '/')) {`
`75`		`- return 0;`
	`75`	`+ return FAILURE;`
`76`	`76`	`}`
`77`	`77`	`}`
`78`		`- return 1;`
	`78`	`+ return SUCCESS;`
`79`	`79`	`}`
`80`	`80`	`/* }}} */`
`81`	`81`
`82`		`-static zend_bool php_password_salt_to64(const char str, const size_t str_len, const size_t out_len, char ret) /* {{{ */`
	`82`	`+static int php_password_salt_to64(const char str, const size_t str_len, const size_t out_len, char ret) /* {{{ */`
`83`	`83`	`{`
`84`	`84`	`size_t pos = 0;`
`85`	`85`	`size_t ret_len = 0;`
`@@ -108,7 +108,7 @@ static zend_bool php_password_salt_to64(const char *str, const size_t str_len, c`
`108`	`108`	`}`
`109`	`109`	`/* }}} */`
`110`	`110`
`111`		`-static zend_bool php_password_make_salt(size_t length, char ret TSRMLS_DC) / {{{ */`
	`111`	`+static int php_password_make_salt(size_t length, char ret TSRMLS_DC) / {{{ */`
`112`	`112`	`{`
`113`	`113`	`int buffer_valid = 0;`
`114`	`114`	`size_t i, raw_length;`
`@@ -395,7 +395,7 @@ PHP_FUNCTION(password_hash)`
`395`	`395`	`efree(buffer);`
`396`	`396`	`php_error_docref(NULL TSRMLS_CC, E_WARNING, "Provided salt is too short: %lu expecting %lu", (unsigned long) buffer_len, (unsigned long) required_salt_len);`
`397`	`397`	`RETURN_NULL();`
`398`		`- } else if (0 == php_password_salt_is_alphabet(buffer, buffer_len)) {`
	`398`	`+ } else if (php_password_salt_is_alphabet(buffer, buffer_len) == FAILURE) {`
`399`	`399`	`salt = safe_emalloc(required_salt_len, 1, 1);`
`400`	`400`	`if (php_password_salt_to64(buffer, buffer_len, required_salt_len, salt) == FAILURE) {`
`401`	`401`	`efree(hash_format);`