mirror of
https://github.com/curl/curl.git
synced 2026-04-14 22:21:41 +03:00
setopt: refuse blobs with zero length
A blob must have a length or it will not be accepted. By enforcing the check here, TLS backend code can rely on the fact that the length is always non-zero from this point. Reported-by: aisle-research-bot URL: https://github.com/curl/curl/pull/20689#pullrequestreview-3846390367 Closes #20705
This commit is contained in:
Daniel Stenberg
parent
9d94b1a066
commit
956e1ae84f
1 changed files with 1 additions and 1 deletions
|
|
@ -107,7 +107,7 @@ CURLcode Curl_setblobopt(struct curl_blob **blobp,
|
|||
|
||||
if(blob) {
|
||||
struct curl_blob *nblob;
|
||||
if(blob->len > CURL_MAX_INPUT_LENGTH)
|
||||
if(!blob->len || (blob->len > CURL_MAX_INPUT_LENGTH))
|
||||
return CURLE_BAD_FUNCTION_ARGUMENT;
|
||||
nblob = (struct curl_blob *)
|
||||
curlx_malloc(sizeof(struct curl_blob) +
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue