motiejus/zig
1
Fork 0
Code Releases Activity

gzip: add bounds for safer header parsing

Browse Source
This commit is contained in:
mllken
2022-10-12 19:46:03 +07:00
committed by Veikka Tuominen
parent 684264908e
commit 5db1a3cd33
1 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
lib/std/compress/gzip.zig
View File

@@ -15,6 +15,8 @@ const FEXTRA = 1 << 2;
const FNAME = 1 << 3;
const FCOMMENT = 1 << 4;
const max_string_len = 1024;
pub fn GzipStream(comptime ReaderType: type) type {
return struct {
const Self = @This();
@@ -71,7 +73,7 @@ pub fn GzipStream(comptime ReaderType: type) type {
filename = try source.readUntilDelimiterAlloc(
allocator,
0,
std.math.maxInt(usize),
max_string_len,
);
}
errdefer if (filename) |p| allocator.free(p);
@@ -81,7 +83,7 @@ pub fn GzipStream(comptime ReaderType: type) type {
comment = try source.readUntilDelimiterAlloc(
allocator,
0,
std.math.maxInt(usize),
max_string_len,
);
}
errdefer if (comment) |p| allocator.free(p);