prevent CNAME/PTR parsing from reading data past the response end

[musl] / src / network / dns_parse.c

diff --git a/src/network/dns_parse.c b/src/network/dns_parse.c
index 320df60..7f83e79 100644 (file)
--- a/src/network/dns_parse.c
+++ b/src/network/dns_parse.c
@@ -1,7 +1,7 @@
 #include <string.h>
 #include "lookup.h"
 
-int __dns_parse(const unsigned char *r, int rlen, int (*callback)(void *, int, const void *, int, const void *), void *ctx)
+int __dns_parse(const unsigned char *r, int rlen, int (*callback)(void *, int, const void *, int, const void *, int), void *ctx)
 {
        int qdcount, ancount;
        const unsigned char *p;
@@ -26,7 +26,7 @@ int __dns_parse(const unsigned char *r, int rlen, int (*callback)(void *, int, c
                p += 1 + !!*p;
                len = p[8]*256 + p[9];
                if (len+10 > r+rlen-p) return -1;
-               if (callback(ctx, p[1], p+10, len, r) < 0) return -1;
+               if (callback(ctx, p[1], p+10, len, r, rlen) < 0) return -1;
                p += 10 + len;
        }
        return 0;