[ch2833] Detect infinte loop in dealing with DNS name compression.

cybermaggedon · Feb 22, 2018 · 223dec8 · 223dec8
1 parent fe70ad1
commit 223dec8
Showing 1 changed file with 10 additions and 0 deletions.
diff --git a/src/dns_protocol.C b/src/dns_protocol.C
@@ -41,6 +41,10 @@ void dns_decoder::parse_name(pdu_iter ms, pdu_iter me,
 			     pdu_iter& pos, pdu_iter e, std::string& name,
 			     bool& first)
 {
+
+    // Save this for later.
+    pdu_iter start = pos;
+
     validate_iter(pos, e);
 
     while (1) {
@@ -56,6 +60,11 @@ void dns_decoder::parse_name(pdu_iter ms, pdu_iter me,
 
 	    pdu_iter pos2 = ms + offset;
 
+	    // No point calling myself with the same args, that would be
+	    // infinite loop.
+	    if (pos2 == start)
+		throw std::runtime_error("Infinite loop in DNS structure.");
+
 	    parse_name(ms, me, pos2, me, name, first);
 	    return;
 
@@ -75,6 +84,7 @@ void dns_decoder::parse_name(pdu_iter ms, pdu_iter me,
 
 void dns_decoder::parse()
 {
+
     queries.clear();
 
     parse_header(s);