Amazing-Mirror/fragattacks
1
0
Fork 0
mirror of https://github.com/vanhoefm/fragattacks.git synced 2024-11-25 00:38:24 -05:00
Code Issues Projects Releases Wiki Activity

P2P NFC: Make code easier for static analyzers

Browse Source 
len + pos > end comparison here did verify that the length field had a
valid value, but that did not seem to enough to avoid TAINTED_SCALAR
warning. Re-order that validation step to be equivalent "len > end -
pos" to remove these false positives (CID 68116).

Signed-off-by: Jouni Malinen <j@w1.fi>
This commit is contained in:
Jouni Malinen 2014-10-11 18:34:25 +03:00
parent 6c9f74deaf
commit c061ae590a
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
wpa_supplicant/p2p_supplicant.c
View File

@ -7602,7 +7602,7 @@ static int wpas_p2p_nfc_connection_handover(struct wpa_supplicant *wpa_s,
} }
len = WPA_GET_BE16(pos); len = WPA_GET_BE16(pos);
pos += 2; pos += 2;
if (pos + len > end) { if (len > end - pos) {
wpa_printf(MSG_DEBUG, "P2P: Not enough data for WSC " wpa_printf(MSG_DEBUG, "P2P: Not enough data for WSC "
"attributes"); "attributes");
return -1; return -1;
@ -7618,7 +7618,7 @@ static int wpas_p2p_nfc_connection_handover(struct wpa_supplicant *wpa_s,
} }
len = WPA_GET_BE16(pos); len = WPA_GET_BE16(pos);
pos += 2; pos += 2;
if (pos + len > end) { if (len > end - pos) {
wpa_printf(MSG_DEBUG, "P2P: Not enough data for P2P " wpa_printf(MSG_DEBUG, "P2P: Not enough data for P2P "
"attributes"); "attributes");
return -1; return -1;