Solaris version 8 strcasecmp() and strncasecmp() produce incorrect results with 8-bit characters. For example, non-ASCII characters could compare equal to ASCII characters. Such a bug could result in any number of security problems. Solaris qsort() could SIGSEGV because some queue manager's comparisons of recipient information were not 100% transitive. An off-by-one error caused a null byte to be written beyond the end of queue manager's dynamically allocated memory with addresses of exactly 100 bytes long, resulting in SIGSEGV on some Linux systems. File locking of DBM files was broken, because postalias and postmap locked a different file than the other Postfix processes. Prereq: "1.1.3" diff -cr --new-file ../postfix-1.1.3/src/global/mail_version.h ./src/global/mail_version.h *** ../postfix-1.1.3/src/global/mail_version.h Fri Feb 1 09:09:40 2002 --- ./src/global/mail_version.h Fri Feb 22 19:38:56 2002 *************** *** 22,30 **** */ #define VAR_MAIL_VERSION "mail_version" #ifdef SNAPSHOT ! #define DEF_MAIL_VERSION "1.1.3-$mail_release_date" #else ! #define DEF_MAIL_VERSION "1.1.3" #endif extern char *var_mail_version; --- 22,30 ---- */ #define VAR_MAIL_VERSION "mail_version" #ifdef SNAPSHOT ! #define DEF_MAIL_VERSION "1.1.4-$mail_release_date" #else ! #define DEF_MAIL_VERSION "1.1.4" #endif extern char *var_mail_version; *************** *** 32,38 **** * Release date. */ #define VAR_MAIL_RELEASE "mail_release_date" ! #define DEF_MAIL_RELEASE "20020201" extern char *var_mail_release; /* LICENSE --- 32,38 ---- * Release date. */ #define VAR_MAIL_RELEASE "mail_release_date" ! #define DEF_MAIL_RELEASE "20020222" extern char *var_mail_release; /* LICENSE diff -cr --new-file ../postfix-1.1.3/COPYRIGHT ./COPYRIGHT *** ../postfix-1.1.3/COPYRIGHT Wed Dec 31 19:00:00 1969 --- ./COPYRIGHT Sat Feb 23 09:01:30 2002 *************** *** 0 **** --- 1,35 ---- + Included for the use of the fix_strcasecmp.c module which works + around a Solaris problem. + + /* + * Copyright (c) 1987, 1993 + * The Regents of the University of California. All rights reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in the + * documentation and/or other materials provided with the distribution. + * 3. All advertising materials mentioning features or use of this software + * must display the following acknowledgement: + * This product includes software developed by the University of + * California, Berkeley and its contributors. + * 4. Neither the name of the University nor the names of its contributors + * may be used to endorse or promote products derived from this software + * without specific prior written permission. + * + * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND + * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE + * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE + * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL + * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS + * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY + * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF + * SUCH DAMAGE. + */ diff -cr --new-file ../postfix-1.1.3/HISTORY ./HISTORY *** ../postfix-1.1.3/HISTORY Fri Feb 1 12:51:03 2002 --- ./HISTORY Sat Feb 23 19:31:55 2002 *************** *** 6052,6057 **** --- 6052,6100 ---- and /usr/sbin/sendmail differ, and will propose to replace one by a symlink to the other. File: conf/postfix-script. + 20020204 + + Sanity: additional permission checks for "postfix check" + that warn for setgid_group group ownership mismatches. by + Matthias Andree, uni-dortmund.de. File: conf/postfix-script. + + Bugfix: "postfix check" used a too simplistic way to + recognize file ownership (grepping ls output). It now uses + the recently discovered "find -prune". Peter Bieringer, + Matthias Andree. File: conf/postfix-script. + + 20020218 + + Workaround: log a warning and disconnect when an SMTP client + ignores our negative replies and starts sending message + content without permission. File: smtpd/smtpd.c. + + 20020220 + + Bugfix: mismatch in the file being locked by dict_dbm and + the file being locked by postmap, so that locks did not + work correctly. Victor Duchovni, Morgan Stanley. + + 20020222 + + Workaround: Solaris bug 4380626: strcasecmp() and strncasecmp() + produce incorrect results with 8-bit characters. For example, + non-ASCII characters could compare equal to ASCII characters, + and that could result in any number of security problems. + Files: util/strcasecmp.c, COPYRIGHT (the BSD license). + + Bugfix: off-by-one error, causing a null byte to be written + outside dynamically allocated memory in the queue manager + with addresses of exactly 100 bytes long, resulting in + SIGSEGV on systems with an "exact fit" malloc routine. + Experienced by Ralf Hildebrandt; diagnosed by Victor + Duchovny. Files: *qmgr/qmgr_message.c. This is not a + security problem. + + Bugfix: make all recipient comparisons transitive, because + Solaris qsort() causes SIGSEGV errors otherwise. Victor + Duchovny, Morgan Stanley. File: *qmgr/qmgr_message.c. + Open problems: Low: don't do user@domain and @domain lookups in diff -cr --new-file ../postfix-1.1.3/INSTALL ./INSTALL *** ../postfix-1.1.3/INSTALL Thu Jan 17 11:30:03 2002 --- ./INSTALL Mon Feb 4 15:21:10 2002 *************** *** 222,227 **** --- 222,232 ---- NB: this group was optional with older Postfix releases; it is now required. + - Optional: If you want to install symbol-stripped (non-debug) versions + of the Postfix programs and daemons, do: + + % strip bin/* libexec/* + - Run one of the following commands as the super-user: # make install (interactive version, first time install) diff -cr --new-file ../postfix-1.1.3/README_FILES/INSTALL ./README_FILES/INSTALL *** ../postfix-1.1.3/README_FILES/INSTALL Thu Jan 17 11:30:03 2002 --- ./README_FILES/INSTALL Mon Feb 4 15:21:10 2002 *************** *** 222,227 **** --- 222,232 ---- NB: this group was optional with older Postfix releases; it is now required. + - Optional: If you want to install symbol-stripped (non-debug) versions + of the Postfix programs and daemons, do: + + % strip bin/* libexec/* + - Run one of the following commands as the super-user: # make install (interactive version, first time install) diff -cr --new-file ../postfix-1.1.3/conf/postfix-script ./conf/postfix-script *** ../postfix-1.1.3/conf/postfix-script Fri Feb 1 13:51:38 2002 --- ./conf/postfix-script Mon Feb 4 16:05:48 2002 *************** *** 174,179 **** --- 174,188 ---- ! \( -type p -o -type s \) ! -user $mail_owner \ -exec $WARN not owned by $mail_owner: {} \; + find $queue_directory/public $queue_directory/maildrop \ + $command_directory/postqueue $command_directory/postdrop \ + -prune ! -group $setgid_group \ + -exec $WARN not owned by group $setgid_group: {} \; + + find $command_directory/postqueue $command_directory/postdrop \ + -prune ! -perm -02111 \ + -exec $WARN not set-gid: {} \; + for name in `ls -d $queue_directory/* | \ egrep '/(bin|etc|lib|usr)$'` ; \ do \ *************** *** 181,191 **** -exec $WARN not owned by root: {} \; ; \ done ! for dir in $queue_directory/maildrop ! do ! ls -lLd $dir | (grep " $mail_owner " >/dev/null || ! $WARN not owned by $mail_owner: $dir) ! done for dir in bin etc lib sbin usr do --- 190,200 ---- -exec $WARN not owned by root: {} \; ; \ done ! # WARNING: this should not descend into the maildrop directory. ! # maildrop is the least trusted Postfix directory. ! ! find $queue_directory/maildrop/. -prune ! -user $mail_owner \ ! -exec $WARN not owned by $mail_owner: $queue_directory/maildrop \; for dir in bin etc lib sbin usr do diff -cr --new-file ../postfix-1.1.3/html/smtpd.8.html ./html/smtpd.8.html *** ../postfix-1.1.3/html/smtpd.8.html Thu Jan 17 11:24:55 2002 --- ./html/smtpd.8.html Fri Feb 22 19:40:54 2002 *************** *** 1,5 **** 
- 
  SMTPD(8)                                                 SMTPD(8)
  
  NAME
--- 1,4 ----
***************
*** 335,340 ****
         P.O. Box 704
         Yorktown Heights, NY 10598, USA
  
!                                                                 1
!
--- 334,338 ---- P.O. Box 704 Yorktown Heights, NY 10598, USA ! SMTPD(8) diff -cr --new-file ../postfix-1.1.3/makedefs ./makedefs *** ../postfix-1.1.3/makedefs Tue Jan 29 12:27:34 2002 --- ./makedefs Sat Feb 23 09:07:06 2002 *************** *** 117,122 **** --- 117,127 ---- 5.[0-4]) CCARGS="$CCARGS -DMISSING_USLEEP";; *) CCARGS="$CCARGS -DHAS_POSIX_REGEXP";; esac + # Work around broken str*casecmp(). Do it all here instead + # of having half the solution in the sys_defs.h file. + CCARGS="$CCARGS -Dstrcasecmp=fix_strcasecmp \ + -Dstrncasecmp=fix_strncasecmp" + STRCASE="strcasecmp.o" # Avoid common types of braindamage case "$LD_LIBRARY_PATH" in ?*) echo "Don't set LD_LIBRARY_PATH" 1>&2; exit 1;; *************** *** 303,307 **** --- 308,313 ---- OPT = $OPT DEBUG = $DEBUG AWK = $AWK + STRCASE = $STRCASE EXPORT = AUXLIBS="$AUXLIBS" CCARGS="$CCARGS" OPT="$OPT" DEBUG="$DEBUG" EOF diff -cr --new-file ../postfix-1.1.3/postfix-install ./postfix-install *** ../postfix-1.1.3/postfix-install Wed Jan 16 09:30:38 2002 --- ./postfix-install Sat Feb 23 08:32:12 2002 *************** *** 174,180 **** case $arg in *=*) IFS= eval $arg; IFS="$BACKUP_IFS";; -non-int*) non_interactive=1;; ! *) echo $0: Error: $USAGE 1>&2; exit 1;; esac shift done --- 174,180 ---- case $arg in *=*) IFS= eval $arg; IFS="$BACKUP_IFS";; -non-int*) non_interactive=1;; ! *) echo "$0: Error: $USAGE" 1>&2; exit 1;; esac shift done diff -cr --new-file ../postfix-1.1.3/src/nqmgr/qmgr_message.c ./src/nqmgr/qmgr_message.c *** ../postfix-1.1.3/src/nqmgr/qmgr_message.c Sat Jul 14 09:07:57 2001 --- ./src/nqmgr/qmgr_message.c Fri Feb 22 19:16:14 2002 *************** *** 509,516 **** /* * Compare most significant to least significant recipient attributes. */ ! if ((queue1 = rcpt1->queue) != 0 && (queue2 = rcpt2->queue) != 0) { /* * Compare message transport. --- 509,525 ---- /* * Compare most significant to least significant recipient attributes. + * The comparison function must be transitive, so NULL values need to be + * assigned an ordinal (we set NULL last). */ ! ! queue1 = rcpt1->queue; ! queue2 = rcpt2->queue; ! if (queue1 != 0 && queue2 == 0) ! return (-1); ! if (queue1 == 0 && queue2 != 0) ! return (1); ! if (queue1 != 0 && queue2 != 0) { /* * Compare message transport. *************** *** 529,536 **** /* * Compare recipient domain. */ ! if ((at1 = strrchr(rcpt1->address, '@')) != 0 ! && (at2 = strrchr(rcpt2->address, '@')) != 0 && (result = strcasecmp(at1, at2)) != 0) return (result); --- 538,550 ---- /* * Compare recipient domain. */ ! at1 = strrchr(rcpt1->address, '@'); ! at2 = strrchr(rcpt2->address, '@'); ! if (at1 == 0 && at2 != 0) ! return (1); ! if (at1 != 0 && at2 == 0) ! return (-1); ! if (at1 != 0 && at2 != 0 && (result = strcasecmp(at1, at2)) != 0) return (result); *************** *** 708,714 **** queue = 0; } if (transport->recipient_limit == 1) { ! VSTRING_SPACE(reply.nexthop, len + 1); memmove(STR(reply.nexthop) + len + 1, STR(reply.nexthop), LEN(reply.nexthop) + 1); memcpy(STR(reply.nexthop), STR(reply.recipient), len); --- 722,728 ---- queue = 0; } if (transport->recipient_limit == 1) { ! VSTRING_SPACE(reply.nexthop, len + 2); memmove(STR(reply.nexthop) + len + 1, STR(reply.nexthop), LEN(reply.nexthop) + 1); memcpy(STR(reply.nexthop), STR(reply.recipient), len); diff -cr --new-file ../postfix-1.1.3/src/qmgr/qmgr_message.c ./src/qmgr/qmgr_message.c *** ../postfix-1.1.3/src/qmgr/qmgr_message.c Sat Jul 14 09:08:57 2001 --- ./src/qmgr/qmgr_message.c Fri Feb 22 19:16:17 2002 *************** *** 389,396 **** /* * Compare most significant to least significant recipient attributes. */ ! if ((queue1 = rcpt1->queue) != 0 && (queue2 = rcpt2->queue) != 0) { /* * Compare message transport. --- 389,405 ---- /* * Compare most significant to least significant recipient attributes. + * The comparison function must be transitive, so NULL values need to be + * assigned an ordinal (we set NULL last). */ ! ! queue1 = rcpt1->queue; ! queue2 = rcpt2->queue; ! if (queue1 != 0 && queue2 == 0) ! return (-1); ! if (queue1 == 0 && queue2 != 0) ! return (1); ! if (queue1 != 0 && queue2 != 0) { /* * Compare message transport. *************** *** 409,416 **** /* * Compare recipient domain. */ ! if ((at1 = strrchr(rcpt1->address, '@')) != 0 ! && (at2 = strrchr(rcpt2->address, '@')) != 0 && (result = strcasecmp(at1, at2)) != 0) return (result); --- 418,430 ---- /* * Compare recipient domain. */ ! at1 = strrchr(rcpt1->address, '@'); ! at2 = strrchr(rcpt2->address, '@'); ! if (at1 == 0 && at2 != 0) ! return (1); ! if (at1 != 0 && at2 == 0) ! return (-1); ! if (at1 != 0 && at2 != 0 && (result = strcasecmp(at1, at2)) != 0) return (result); *************** *** 588,594 **** queue = 0; } if (transport->recipient_limit == 1) { ! VSTRING_SPACE(reply.nexthop, len + 1); memmove(STR(reply.nexthop) + len + 1, STR(reply.nexthop), LEN(reply.nexthop) + 1); memcpy(STR(reply.nexthop), STR(reply.recipient), len); --- 602,608 ---- queue = 0; } if (transport->recipient_limit == 1) { ! VSTRING_SPACE(reply.nexthop, len + 2); memmove(STR(reply.nexthop) + len + 1, STR(reply.nexthop), LEN(reply.nexthop) + 1); memcpy(STR(reply.nexthop), STR(reply.recipient), len); diff -cr --new-file ../postfix-1.1.3/src/smtpd/smtpd.c ./src/smtpd/smtpd.c *** ../postfix-1.1.3/src/smtpd/smtpd.c Thu Jan 17 11:20:34 2002 --- ./src/smtpd/smtpd.c Sat Feb 23 18:41:36 2002 *************** *** 1295,1300 **** --- 1295,1301 ---- } SMTPD_CMD; #define SMTPD_CMD_FLAG_LIMIT (1<<0) /* limit usage */ + #define SMTPD_CMD_FLAG_HEADER (1<<1) /* RFC 2822 mail header */ static SMTPD_CMD smtpd_cmd_table[] = { "HELO", helo_cmd, SMTPD_CMD_FLAG_LIMIT, *************** *** 1312,1317 **** --- 1313,1321 ---- "VRFY", vrfy_cmd, SMTPD_CMD_FLAG_LIMIT, "ETRN", etrn_cmd, SMTPD_CMD_FLAG_LIMIT, "QUIT", quit_cmd, 0, + "Received:", 0, SMTPD_CMD_FLAG_HEADER, + "Subject:", 0, SMTPD_CMD_FLAG_HEADER, + "From:", 0, SMTPD_CMD_FLAG_HEADER, 0, }; *************** *** 1393,1398 **** --- 1397,1408 ---- state->error_count++; continue; } + if (cmdp->flags & SMTPD_CMD_FLAG_HEADER) { + msg_warn("%s sent mail content instead of SMTP command: %.100s", + state->namaddr, vstring_str(state->buffer)); + smtpd_chat_reply(state, "221 Error: I can break rules, too. Goodbye."); + break; + } if (state->access_denied && cmdp->action != quit_cmd) { smtpd_chat_reply(state, "503 Error: access denied for %s", state->namaddr); /* RFC 2821 Sec 3.1 */ *************** *** 1405,1411 **** if ((cmdp->flags & SMTPD_CMD_FLAG_LIMIT) && state->junk_cmds++ > var_smtpd_junk_cmd_limit) state->error_count++; - if (cmdp->action == quit_cmd) break; } --- 1415,1420 ---- diff -cr --new-file ../postfix-1.1.3/src/util/Makefile.in ./src/util/Makefile.in *** ../postfix-1.1.3/src/util/Makefile.in Fri Jan 25 09:10:14 2002 --- ./src/util/Makefile.in Sat Feb 23 18:45:59 2002 *************** *** 26,32 **** unix_connect.c unix_listen.c unix_trigger.c unsafe.c username.c \ valid_hostname.c vbuf.c vbuf_print.c vstream.c vstream_popen.c \ vstring.c vstring_vstream.c watchdog.c writable.c write_buf.c \ ! write_wait.c OBJS = alldig.o argv.o argv_split.o attr_print0.o attr_print64.o \ attr_scan0.o attr_scan64.o base64_code.o basename.o binhash.o \ chroot_uid.o clean_env.o close_on_exec.o concatenate.o ctable.o \ --- 26,32 ---- unix_connect.c unix_listen.c unix_trigger.c unsafe.c username.c \ valid_hostname.c vbuf.c vbuf_print.c vstream.c vstream_popen.c \ vstring.c vstring_vstream.c watchdog.c writable.c write_buf.c \ ! write_wait.c strcasecmp.c OBJS = alldig.o argv.o argv_split.o attr_print0.o attr_print64.o \ attr_scan0.o attr_scan64.o base64_code.o basename.o binhash.o \ chroot_uid.o clean_env.o close_on_exec.o concatenate.o ctable.o \ *************** *** 54,60 **** unix_connect.o unix_listen.o unix_trigger.o unsafe.o username.o \ valid_hostname.o vbuf.o vbuf_print.o vstream.o vstream_popen.o \ vstring.o vstring_vstream.o watchdog.o writable.o write_buf.o \ ! write_wait.o HDRS = argv.h attr.h base64_code.h binhash.h chroot_uid.h clean_env.h \ connect.h ctable.h dict.h dict_db.h dict_dbm.h dict_env.h \ dict_ht.h dict_ldap.h dict_mysql.h dict_ni.h dict_nis.h \ --- 54,60 ---- unix_connect.o unix_listen.o unix_trigger.o unsafe.o username.o \ valid_hostname.o vbuf.o vbuf_print.o vstream.o vstream_popen.o \ vstring.o vstring_vstream.o watchdog.o writable.o write_buf.o \ ! write_wait.o $(STRCASE) HDRS = argv.h attr.h base64_code.h binhash.h chroot_uid.h clean_env.h \ connect.h ctable.h dict.h dict_db.h dict_dbm.h dict_env.h \ dict_ht.h dict_ldap.h dict_mysql.h dict_ni.h dict_nis.h \ diff -cr --new-file ../postfix-1.1.3/src/util/dict_dbm.c ./src/util/dict_dbm.c *** ../postfix-1.1.3/src/util/dict_dbm.c Sat Apr 14 14:15:03 2001 --- ./src/util/dict_dbm.c Wed Feb 20 10:40:30 2002 *************** *** 379,385 **** * time domain) locks while rewriting the entire file. */ if (dict_flags & DICT_FLAG_LOCK) { ! dbm_path = concatenate(path, ".pag", (char *) 0); if ((lock_fd = open(dbm_path, open_flags, 0644)) < 0) msg_fatal("open database %s: %m", dbm_path); if (myflock(lock_fd, INTERNAL_LOCK, MYFLOCK_OP_SHARED) < 0) --- 379,385 ---- * time domain) locks while rewriting the entire file. */ if (dict_flags & DICT_FLAG_LOCK) { ! dbm_path = concatenate(path, ".dir", (char *) 0); if ((lock_fd = open(dbm_path, open_flags, 0644)) < 0) msg_fatal("open database %s: %m", dbm_path); if (myflock(lock_fd, INTERNAL_LOCK, MYFLOCK_OP_SHARED) < 0) diff -cr --new-file ../postfix-1.1.3/src/util/strcasecmp.c ./src/util/strcasecmp.c *** ../postfix-1.1.3/src/util/strcasecmp.c Wed Dec 31 19:00:00 1969 --- ./src/util/strcasecmp.c Tue Feb 26 08:28:37 2002 *************** *** 0 **** --- 1,66 ---- + /* + * Copyright (c) 1987, 1993 + * The Regents of the University of California. All rights reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in the + * documentation and/or other materials provided with the distribution. + * 3. All advertising materials mentioning features or use of this software + * must display the following acknowledgement: + * This product includes software developed by the University of + * California, Berkeley and its contributors. + * 4. Neither the name of the University nor the names of its contributors + * may be used to endorse or promote products derived from this software + * without specific prior written permission. + * + * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND + * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE + * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE + * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL + * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS + * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY + * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF + * SUCH DAMAGE. + */ + + #if defined(LIBC_SCCS) && !defined(lint) + static char sccsid[] = "@(#)strcasecmp.c 8.1 (Berkeley) 6/4/93"; + #endif /* LIBC_SCCS and not lint */ + + #include + #include + + int strcasecmp(const char *s1, const char *s2) + { + const unsigned char *us1 = (const unsigned char *) s1; + const unsigned char *us2 = (const unsigned char *) s2; + + while (TOLOWER(*us1) == TOLOWER(*us2++)) + if (*us1++ == '\0') + return (0); + return (TOLOWER(*us1) - TOLOWER(*--us2)); + } + + int strncasecmp(const char *s1, const char *s2, size_t n) + { + if (n != 0) { + const unsigned char *us1 = (const unsigned char *) s1; + const unsigned char *us2 = (const unsigned char *) s2; + + do { + if (TOLOWER(*us1) != TOLOWER(*us2++)) + return (TOLOWER(*us1) - TOLOWER(*--us2)); + if (*us1++ == '\0') + break; + } while (--n != 0); + } + return (0); + }