nihilist/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-11-10 13:13:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

zlib: Turn UINT_MAX overrun into an error, not an assert.

Browse Source
This commit is contained in:
Nick Mathewson 2017-04-25 09:55:38 -04:00
parent 4b01b45ec1
commit 49a5b50b31
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
src/common/compress_zlib.c
View File

@ -213,8 +213,11 @@ tor_zlib_compress_process(tor_zlib_compress_state_t *state,
{
int err;
tor_assert(state != NULL);
tor_assert(*in_len <= UINT_MAX);
tor_assert(*out_len <= UINT_MAX);
if (*in_len > UINT_MAX ||
*out_len > UINT_MAX) {
return TOR_COMPRESS_ERROR;
}
state->stream.next_in = (unsigned char*) *in;
state->stream.avail_in = (unsigned int)*in_len;
state->stream.next_out = (unsigned char*) *out;