wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-08-02 20:24:39 +02:00
Code Issues Packages Projects Releases Wiki Activity

Maintenance: OCSP

Browse Source 
1. Add a couple more bounds checks to wolfIO_HttpProcessResponseBuf().
This commit is contained in:
John Safranek
2019-11-21 14:51:35 -08:00
parent 6720bc3890
commit 71943844d6
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/wolfio.c
View File

@@ -980,6 +980,11 @@ static int wolfIO_HttpProcessResponseBuf(int sfd, byte **recvBuf,
(void)heap; (void)heap;
(void)dynType; (void)dynType;
if (chunkSz < 0 || len < 0) {
WOLFSSL_MSG("wolfIO_HttpProcessResponseBuf invalid chunk or length size");
return MEMORY_E;
}
if (newRecvSz <= 0) { if (newRecvSz <= 0) {
WOLFSSL_MSG("wolfIO_HttpProcessResponseBuf new receive size overflow"); WOLFSSL_MSG("wolfIO_HttpProcessResponseBuf new receive size overflow");
return MEMORY_E; return MEMORY_E;