Fix problem in strdup replacement when dealing with absolutely huge strings.

2008-02-06 19:01:13 +00:00
parent bad6410d08
commit 20e9fc73e2
3 changed files with 11 additions and 2 deletions
--- a/lib/strdup.c
+++ b/lib/strdup.c
@@ -5,7 +5,7 @@
 *                            | (__| |_| |  _ <| |___
 *                             \___|\___/|_| \_\_____|
 *
- * Copyright (C) 1998 - 2007, Daniel Stenberg, <daniel@haxx.se>, et al.
+ * Copyright (C) 1998 - 2008, Daniel Stenberg, <daniel@haxx.se>, et al.
 *
 * This software is licensed as described in the file COPYING, which
 * you should have received as part of this distribution. The terms
@@ -27,13 +27,17 @@
 #ifndef HAVE_STRDUP
 char *curlx_strdup(const char *str)
 {
-  int len;
+  size_t len;
  char *newstr;

  if(!str)
    return (char *)NULL;

  len = strlen(str);
+
+  if(len >= ((size_t)-1) / sizeof(char))
+    return (char *)NULL;
+
  newstr = (char *) malloc((len+1)*sizeof(char));
  if(!newstr)
    return (char *)NULL;