diff options
| author | Simon Rettberg | 2017-04-21 16:31:06 +0200 |
|---|---|---|
| committer | Simon Rettberg | 2017-04-21 16:31:06 +0200 |
| commit | b61176f17b59a94750dff1f959231dadc4e6078a (patch) | |
| tree | 88ee419323ba332a1dd06c5aa801c87f59b36bb3 /scan_asn1length.c | |
| parent | ldadp.h: Add missing SearchRequestReference opcode (diff) | |
| download | ldadp-b61176f17b59a94750dff1f959231dadc4e6078a.tar.gz ldadp-b61176f17b59a94750dff1f959231dadc4e6078a.tar.xz ldadp-b61176f17b59a94750dff1f959231dadc4e6078a.zip | |
Update ldap/asn1/... files with current tinyldap
Diffstat (limited to 'scan_asn1length.c')
| -rw-r--r-- | scan_asn1length.c | 45 |
1 files changed, 24 insertions, 21 deletions
diff --git a/scan_asn1length.c b/scan_asn1length.c index 944bd52..9e20fae 100644 --- a/scan_asn1length.c +++ b/scan_asn1length.c @@ -1,25 +1,28 @@ #include <inttypes.h> #include "asn1.h" -size_t scan_asn1length(const char* src,const char* max,size_t* length) { - const char* orig=src; - if (src>=max) return 0; -/* If the highest bit of the first byte is clear, the byte is the length. - * Otherwise the next n bytes are the length (n being the lower 7 bits) */ - if (*src&0x80) { - int chars=*src&0x7f; - size_t l=0; - while (chars>0) { - if (++src>=max) return 0; - if (l>(((unsigned long)-1)>>8)) return 0; /* catch integer overflow */ - l=l*256+(unsigned char)*src; - --chars; - } - *length=l; - } else - *length=*src&0x7f; - src++; - if (src+*length>max) return 0; /* catch integer overflow */ - if ((uintptr_t)src+*length<(uintptr_t)src) return 0; /* gcc 4.1 removes this check without the cast to uintptr_t */ - return src-orig; +size_t scan_asn1length(const char* src,const char* max,size_t* value) { + size_t len=max-src; + if (len==0 || len>=-(uintptr_t)src) return 0; + unsigned int i,c=*src; + size_t l; + if ((c&0x80)==0) { + l=c&0x7f; + i=1; + } else { + /* Highest bit set: lower 7 bits is the length of the length value in bytes. */ + c&=0x7f; + if (!c) return 0; /* length 0x80 means indefinite length encoding, not supported here */ + l=(unsigned char)src[1]; + if (l==0) return 0; /* not minimally encoded: 0x81 0x00 instead of 0x00 */ + if (c>sizeof(l)) return 0; /* too many bytes, does not fit into target integer type */ + if (c+1>len) return 0; /* not enough data in input buffer */ + for (i=2; i<=c; ++i) + l=l*256+(unsigned char)src[i]; + if (l<0x7f) return 0; /* not minimally encoded: 0x81 0x70 instead of 0x70 */ + } + if (l>len-i) return 0; /* if the length would not fit into the buffer, return 0 */ + *value=l; + return i; } + |