Skip to content

G
git2
Commit b11eb08f by Edward Thomson
Options

config parse: safely cast to int

parent 6b349ecc
Showing with 6 additions and 1 deletions
src/config_parse.c
...@@ -88,6 +88,11 @@ static int parse_subsection_header(git_config_parser *reader, const char *line, ...@@ -88,6 +88,11 @@ static int parse_subsection_header(git_config_parser *reader, const char *line,
last_quote = strrchr(line, '"'); last_quote = strrchr(line, '"');
quoted_len = last_quote - first_quote; quoted_len = last_quote - first_quote;
if ((last_quote - line) > INT_MAX) {
set_parse_error(reader, 0, "invalid section header, line too long");
goto end_error;
}
if (quoted_len == 0) { if (quoted_len == 0) {
set_parse_error(reader, 0, "missing closing quotation mark in section header"); set_parse_error(reader, 0, "missing closing quotation mark in section header");
goto end_error; goto end_error;
...@@ -146,7 +151,7 @@ end_parse: ...@@ -146,7 +151,7 @@ end_parse:
} }
*section_name = git_buf_detach(&buf); *section_name = git_buf_detach(&buf);
return &line[rpos + 2] - line_start; /* rpos is at the closing quote */ return (int)(&line[rpos + 2] - line_start); /* rpos is at the closing quote */
end_error: end_error:
git_buf_dispose(&buf); git_buf_dispose(&buf);
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment