Home Explore Help
Sign In
piros
/
tor
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

rust/protover: fix null deref in protover_all_supported()

Fortunately with the current callers it couldn't happen in practice.

Fix on d1820c1516a31a149fc51a9e5126bf899e4c4e08.
cypherpunks 5 years ago
parent
75b95e1c8e
commit
db89b4b152
3 changed files with 7 additions and 0 deletions
Split View Show Diff Stats
  1. 3 0
      changes/bug27804
  2. 3 0
      src/rust/protover/ffi.rs
  3. 1 0
      src/test/test_protover.c

+ 3 - 0
changes/bug27804
View File 

@@ -0,0 +1,3 @@
 
+  o Minor bugfixes (rust):
 
+    - Fix a potential null dereference in protover_all_supported().
 
+      Add a test for it. Fixes bug 27804; bugfix on 0.3.3.1-alpha.

+ 3 - 0
src/rust/protover/ffi.rs
View File 

@@ -68,6 +68,9 @@ pub extern "C" fn protover_all_supported(
 
 
     if maybe_unsupported.is_some() {
 
         let unsupported: UnvalidatedProtoEntry = maybe_unsupported.unwrap();
 
+        if missing_out.is_null() {
 
+            return 0;
 
+        }
 
         let c_unsupported: CString = match CString::new(unsupported.to_string()) {
 
             Ok(n) => n,
 
             Err(_) => return 1,

+ 1 - 0
src/test/test_protover.c
View File 

@@ -259,6 +259,7 @@ test_protover_all_supported(void *arg)
 
   tt_ptr_op(msg, OP_EQ, NULL);
 
 
   // Some things we don't support
 
+  tt_assert(! protover_all_supported("Wombat=9", NULL));
 
   tt_assert(! protover_all_supported("Wombat=9", &msg));
 
   tt_str_op(msg, OP_EQ, "Wombat=9");
 
   tor_free(msg);