From: Pekka Riikonen <priikone@silcnet.org>
Date: Thu, 2 Oct 2003 11:17:22 +0000 (+0000)
Subject: 	Better length checking for identifier decoding.
X-Git-Tag: silc.toolkit.0.9.10~27
X-Git-Url: http://git.silcnet.org/gitweb/?p=silc.git;a=commitdiff_plain;h=36e07be8ddd64d5ec38bdc86eda5c2dea120c751

	Better length checking for identifier decoding.
---

diff --git a/lib/silccrypt/silcpkcs.c b/lib/silccrypt/silcpkcs.c
index 1f662dd7..11dda7c9 100644
--- a/lib/silccrypt/silcpkcs.c
+++ b/lib/silccrypt/silcpkcs.c
@@ -553,16 +553,33 @@ SilcPublicKeyIdentifier silc_pkcs_decode_identifier(char *identifier)
   cp = identifier;
   while (cp) {
     len = strcspn(cp, ",");
+    if (len < 1) {
+      cp = NULL;
+      break;
+    }
     if (len - 1 >= 0 && cp[len - 1] == '\\') {
       while (cp) {
+	if (len + 1 > strlen(cp)) {
+	  cp = NULL;
+	  break;
+	}
 	cp += len + 1;
 	len = strcspn(cp, ",") + len;
+	if (len < 1) {
+	  cp = NULL;
+	  break;
+	}
 	if (len - 1 >= 0 && cp[len - 1] != '\\')
 	  break;
       }
     }
 
+    if (!cp)
+      break;
+
     item = silc_calloc(len + 1, sizeof(char));
+    if (len > strlen(cp))
+      break;
     memcpy(item, cp, len);
 
     if (strstr(item, "UN="))
@@ -579,7 +596,7 @@ SilcPublicKeyIdentifier silc_pkcs_decode_identifier(char *identifier)
       ident->country = strdup(item + strcspn(cp, "=") + 1);
 
     cp += len;
-    if (strlen(cp) == 0)
+    if (strlen(cp) < 1)
       cp = NULL;
     else
       cp += 1;