api: make sure len doesn't overrun the input buffer

2025-01-30 18:01:51 +01:00
parent 2865b0c79b
commit e4b7a53191
1 changed files with 2 additions and 0 deletions
--- a/tests/api.c
+++ b/tests/api.c
@@ -99175,6 +99175,8 @@ static int test_dtls_frag_ch_count_records(byte* b, int len)
        records++;
        dtlsRH = (DtlsRecordLayerHeader*)b;
        recordLen = (dtlsRH->length[0] << 8) | dtlsRH->length[1];
+        if (recordLen > (size_t)len)
+            break;
        b += sizeof(DtlsRecordLayerHeader) + recordLen;
        len -= sizeof(DtlsRecordLayerHeader) + recordLen;
    }