From 5203cd2f11a1419db57d067d2713c2118787d0c3 Mon Sep 17 00:00:00 2001
From: Nick Mathewson <nickm@torproject.org>
Date: Mon, 6 Mar 2017 11:31:11 -0500
Subject: [PATCH] Check for NULL as input to
 extrainfo_parse_entry_from_string()

We hope this will make the clangalyzer less worried about this function.

Closes ticket 21496.
---
 changes/bug21496     | 4 ++++
 src/or/routerparse.c | 3 +++
 2 files changed, 7 insertions(+)
 create mode 100644 changes/bug21496

diff --git a/changes/bug21496 b/changes/bug21496
new file mode 100644
index 0000000000..24ac85a769
--- /dev/null
+++ b/changes/bug21496
@@ -0,0 +1,4 @@
+  o Minor features (safety):
+    - Add an explict check to extrainfo_parse_entry_from_string() for NULL
+      inputs. We don't believe this can actually happen, but it may help
+      silence a warning from the Clang analyzer. Closes ticket 21496.
diff --git a/src/or/routerparse.c b/src/or/routerparse.c
index 0336c035b4..c4f329513c 100644
--- a/src/or/routerparse.c
+++ b/src/or/routerparse.c
@@ -2030,6 +2030,9 @@ extrainfo_parse_entry_from_string(const char *s, const char *end,
    * parse that's covered by the hash. */
   int can_dl_again = 0;
 
+  if (BUG(s == NULL))
+    return NULL;
+
   if (!end) {
     end = s + strlen(s);
   }