Home Explore Help
Sign In
piros
/
tor
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Merge remote-tracking branch 'rransom/bug2948' into maint-0.2.2

Nick Mathewson 14 years ago
parent
0e554f93d6 48bdc2f729
commit
177cadff8d
2 changed files with 9 additions and 2 deletions
Split View Show Diff Stats
  1. 7 0
      changes/bug2948
  2. 2 2
      src/or/routerparse.c

+ 7 - 0
changes/bug2948
View File 

@@ -0,0 +1,7 @@
 
+  o Minor bugfixes
 
+    - Only limit the lengths of single HS descriptors, even when
 
+      multiple HS descriptors are published to an HSDir relay in a
 
+      single POST operation.  Fixes bug 2948; bugfix on 0.2.1.5-alpha.
 
+      Found by hsdir.
 
+
 
+

+ 2 - 2
src/or/routerparse.c
View File 

@@ -4638,12 +4638,12 @@ rend_parse_v2_service_descriptor(rend_service_descriptor_t **parsed_out,
 
   else
 
     eos = eos + 1;
 
   /* Check length. */
 
-  if (strlen(desc) > REND_DESC_MAX_SIZE) {
 
+  if (eos-desc > REND_DESC_MAX_SIZE) {
 
     /* XXX023 If we are parsing this descriptor as a server, this
 
      * should be a protocol warning. */
 
     log_warn(LD_REND, "Descriptor length is %i which exceeds "
 
              "maximum rendezvous descriptor size of %i bytes.",
 
-             (int)strlen(desc), REND_DESC_MAX_SIZE);
 
+             (int)(eos-desc), REND_DESC_MAX_SIZE);
 
     goto err;
 
   }
 
   /* Tokenize descriptor. */