]> git.decadent.org.uk Git - odhcp6c.git/commitdiff
projects / odhcp6c.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 1339588)
Revert "Fix handling of DHCPv6 messages containing option lengths exceeding the message"
authorHans Dedecker <dedeckeh@gmail.com>
Fri, 27 Dec 2013 14:49:44 +0000 (15:49 +0100)
committerHans Dedecker <dedeckeh@gmail.com>
Fri, 27 Dec 2013 14:49:44 +0000 (15:49 +0100)
This reverts commit 26c5d8724355b29694af684ee29b47e52129a33c.

src/dhcpv6.c patch | blob | history
src/odhcp6c.h patch | blob | history

diff --git a/src/dhcpv6.c b/src/dhcpv6.c
index 75bc50e84e89f641f0b6f450650f86c60f1b83b3..cd8e43800dca33315047cd000262a5697c985be5 100644 (file)
--- a/src/dhcpv6.c
+++ b/src/dhcpv6.c
@@ -569,11 +569,7 @@ static bool dhcpv6_response_is_valid(const void *buf, ssize_t len,
        void *server_id = odhcp6c_get_state(STATE_SERVER_ID, &server_id_len);
 
        dhcpv6_for_each_option(&rep[1], end, otype, olen, odata) {
        void *server_id = odhcp6c_get_state(STATE_SERVER_ID, &server_id_len);
 
        dhcpv6_for_each_option(&rep[1], end, otype, olen, odata) {
-               if ((odata + olen) > end) {
-                       options_valid = false;
-                       break;
-               }
-               else if (otype == DHCPV6_OPT_CLIENTID) {
+               if (otype == DHCPV6_OPT_CLIENTID) {
                        clientid_ok = (olen + 4U == client_id_len) && !memcmp(
                                        &odata[-4], client_id, client_id_len);
                } else if (otype == DHCPV6_OPT_SERVERID) {
                        clientid_ok = (olen + 4U == client_id_len) && !memcmp(
                                        &odata[-4], client_id, client_id_len);
                } else if (otype == DHCPV6_OPT_SERVERID) {
diff --git a/src/odhcp6c.h b/src/odhcp6c.h
index 87715214622def7044354a6fc46a78c70a35620b..15be59ae4de59ec94c2e91fc869f7a88f2af85b1 100644 (file)
--- a/src/odhcp6c.h
+++ b/src/odhcp6c.h
@@ -155,7 +155,7 @@ struct dhcpv6_auth_reconfigure {
 #define dhcpv6_for_each_option(start, end, otype, olen, odata)\
        for (uint8_t *_o = (uint8_t*)(start); _o + 4 <= (uint8_t*)(end) &&\
                ((otype) = _o[0] << 8 | _o[1]) && ((odata) = (void*)&_o[4]) &&\
 #define dhcpv6_for_each_option(start, end, otype, olen, odata)\
        for (uint8_t *_o = (uint8_t*)(start); _o + 4 <= (uint8_t*)(end) &&\
                ((otype) = _o[0] << 8 | _o[1]) && ((odata) = (void*)&_o[4]) &&\
-                ((olen) = _o[2] << 8 | _o[3]); \
+               ((olen) = _o[2] << 8 | _o[3]) + (odata) <= (uint8_t*)(end); \
                _o += 4 + (_o[2] << 8 | _o[3]))
 
 
                _o += 4 + (_o[2] << 8 | _o[3]))
 
 
Package: odhcp6c