X neonet: Avoid integer overflow on max packet length check

`proto.PktHeaderLen + packed.Ntoh32(pkth.MsgLen)` could wrap int32 if sent pkth.MsgLen is big.

X neonet: Avoid integer overflow on max packet length check
`proto.PktHeaderLen + packed.Ntoh32(pkth.MsgLen)` could wrap int32 if sent pkth.MsgLen is big.
6b9ed46d · Kirill Smelkov · a16e8d52 · 6b9ed46d
Commit 6b9ed46d authored Feb 26, 2018 by Kirill Smelkov
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 2 deletions

go/neo/neonet/connection.go go/neo/neonet/connection.go +3 -2

No files found.
--- a/go/neo/neonet/connection.go
+++ b/go/neo/neonet/connection.go
@@ -1158,10 +1158,11 @@ func (nl *NodeLink) recvPkt() (*pktBuf, error) {

 	pkth := pkt.Header()

-	pktLen := int(proto.PktHeaderLen + packed.Ntoh32(pkth.MsgLen)) // whole packet length
-	if pktLen > proto.PktMaxSize {
+	msgLen := packed.Ntoh32(pkth.MsgLen)
+	if msgLen > proto.PktMaxSize - proto.PktHeaderLen {
 		return nil, ErrPktTooBig
 	}
+	pktLen := int(proto.PktHeaderLen + msgLen) // whole packet length

 	// resize data if we don't have enough room in it
 	data = xbytes.Resize(data, pktLen)