git Service of IN-Ulm e.V. Explore Help
Sign In
cbiedl
/
bgpdump
1
0
Fork 0
Files
Tree: 58ae45ac64
Branches Tags
bgpdump
/
debian
/
patches
/
upstream.fix-crash-on-huge-prefix-lists.patch

upstream.fix-crash-on-huge-prefix-lists.patch 1.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132 
  1. Description: Handle prefix lists with more than MAX_PREFIXES prefixes gracefully
    2. 

  2. Author: Christoph Biedl <debian.axhn@manchmal.in-ulm.de>
    3. 

  3. Bug: https://bitbucket.org/ripencc/bgpdump/issue/2/
    4. 

  4. Bug: https://bitbucket.org/ripencc/bgpdump/issue/10/
    5. 

  5. Bug: https://bitbucket.org/ripencc/bgpdump/issue/13/
    6. 

  6. Bug: https://bitbucket.org/ripencc/bgpdump/issue/17/
    7. 

  7. Bug: https://bitbucket.org/ripencc/bgpdump/issue/18/
    8. 

  8. Last-Update: 2016-07-13
    9. 

  9. 

  10. --- a/bgpdump_lib.c
    11. 

  11. +++ b/bgpdump_lib.c
    12. 

  12. @@ -1590,11 +1590,16 @@
    13. 

  13.              break;
    14. 

  14.          }
    15. 

  15.          
    16. 

  16. -        struct prefix *prefix = prefixes + count;
    17. 

  17. +        struct prefix *prefix;
    18. 

  18.          
    19. 

  19. -        if(count++ > MAX_PREFIXES)
    20. 

  20. -            continue;
    21. 

  21. -
    22. 

  22. +        if(count < MAX_PREFIXES) {
    23. 

  23. +            prefix = prefixes + count;
    24. 

  24. +        } else {
    25. 

  25. +            /* read and discard */
    26. 

  26. +            static struct prefix void_prefix;
    27. 

  27. +            prefix = &void_prefix;
    28. 

  28. +        }
    29. 

  29. +        count++;
    30. 

  30.          *prefix = (struct prefix) { .len = p_len, .path_id = path_id };
    31. 

  31.          mstream_get(s, &prefix->address, p_bytes);
    32. 

  32.      }
    33.