aboutsummaryrefslogtreecommitdiffstats
path: root/sshlib/src/main/java/com/trilead/ssh2/crypto/SimpleDERReader.java
diff options
context:
space:
mode:
Diffstat (limited to 'sshlib/src/main/java/com/trilead/ssh2/crypto/SimpleDERReader.java')
-rw-r--r--sshlib/src/main/java/com/trilead/ssh2/crypto/SimpleDERReader.java8
1 files changed, 7 insertions, 1 deletions
diff --git a/sshlib/src/main/java/com/trilead/ssh2/crypto/SimpleDERReader.java b/sshlib/src/main/java/com/trilead/ssh2/crypto/SimpleDERReader.java
index ff8112a..beca5f7 100644
--- a/sshlib/src/main/java/com/trilead/ssh2/crypto/SimpleDERReader.java
+++ b/sshlib/src/main/java/com/trilead/ssh2/crypto/SimpleDERReader.java
@@ -68,7 +68,8 @@ public class SimpleDERReader
return count;
}
- private int readLength() throws IOException
+ /* visible for testing */
+ int readLength() throws IOException
{
int len = readByte() & 0xff;
@@ -79,6 +80,8 @@ public class SimpleDERReader
if (remain == 0)
return -1;
+ else if (remain > 4)
+ return -1;
len = 0;
@@ -89,6 +92,9 @@ public class SimpleDERReader
remain--;
}
+ if (len < 0)
+ return -1;
+
return len;
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-28 05:55:43 +0000