Issue #12837: POSIX.1-2008 allows socklen_t to be a signed integer: re-enable

the check against negative values, and add a note on this surprising test. Patch by David Watson.

Issue #12837: POSIX.1-2008 allows socklen_t to be a signed integer: re-enable
the check against negative values, and add a note on this surprising test. Patch by David Watson.
466517df · Charles-François Natali · ac7e9e05 · 466517df
Commit 466517df authored Aug 28, 2011 by Charles-François Natali
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 1 deletion

Modules/socketmodule.c Modules/socketmodule.c +2 -1

No files found.
--- a/Modules/socketmodule.c
+++ b/Modules/socketmodule.c
@@ -1745,7 +1745,8 @@ cmsg_min_space(struct msghdr *msg, struct cmsghdr *cmsgh, size_t space)
    static const size_t cmsg_len_end = (offsetof(struct cmsghdr, cmsg_len) +
                                        sizeof(cmsgh->cmsg_len));

-    if (cmsgh == NULL || msg->msg_control == NULL)
+    /* Note that POSIX allows msg_controllen to be of signed type. */
+    if (cmsgh == NULL || msg->msg_control == NULL || msg->msg_controllen < 0)
        return 0;
    if (space < cmsg_len_end)
        space = cmsg_len_end;