From: | tlyu@mit.edu |
Subject: | CVS Commit |
* asn1_get.c (asn1_get_tag_indef): Stomp on asn1class,
construction, retlen, and indef, even if we've hit the end of the
buffer, to avoid passing uninitialized values around.
* asn1_k_decode.c: Reformat somewhat and add comments to demystify
things a little.
(opt_field): Fix to explicitly check for end of subbuf before
verifying the pre-fetched tag, which may have been stomped on by
asn1_get_tag_indef() encountering end-of-buffer.
* krb5_decode.c (opt_field, opt_lenfield): Fix to explicitly check
for end of subbuf before verifying the pre-fetched tag, which may
have been stomped on by asn1_get_tag_indef() encountering
end-of-buffer.
To generate a diff of this commit:
cvs diff -r5.125 -r5.126 krb5/src/lib/krb5/asn.1/ChangeLog
cvs diff -r5.15 -r5.16 krb5/src/lib/krb5/asn.1/asn1_get.c
cvs diff -r5.38 -r5.39 krb5/src/lib/krb5/asn.1/asn1_k_decode.c
cvs diff -r5.37 -r5.38 krb5/src/lib/krb5/asn.1/krb5_decode.c
construction, retlen, and indef, even if we've hit the end of the
buffer, to avoid passing uninitialized values around.
* asn1_k_decode.c: Reformat somewhat and add comments to demystify
things a little.
(opt_field): Fix to explicitly check for end of subbuf before
verifying the pre-fetched tag, which may have been stomped on by
asn1_get_tag_indef() encountering end-of-buffer.
* krb5_decode.c (opt_field, opt_lenfield): Fix to explicitly check
for end of subbuf before verifying the pre-fetched tag, which may
have been stomped on by asn1_get_tag_indef() encountering
end-of-buffer.
To generate a diff of this commit:
cvs diff -r5.125 -r5.126 krb5/src/lib/krb5/asn.1/ChangeLog
cvs diff -r5.15 -r5.16 krb5/src/lib/krb5/asn.1/asn1_get.c
cvs diff -r5.38 -r5.39 krb5/src/lib/krb5/asn.1/asn1_k_decode.c
cvs diff -r5.37 -r5.38 krb5/src/lib/krb5/asn.1/krb5_decode.c