Fix static analysis issue

Add checking routine to each variable not exceed buffer length

Change-Id: I4705d4d524b6414a15a3ee54195d8787767e097e
Signed-off-by: Junghyun Yeon <jungh.yeon@samsung.com>

diff --git a/installer/pkgmgr_installer_signal_agent.c b/installer/pkgmgr_installer_signal_agent.c
index 2b5ae47..ca70733 100644 (file)
--- a/installer/pkgmgr_installer_signal_agent.c
+++ b/installer/pkgmgr_installer_signal_agent.c
@@ -225,7 +225,8 @@ static gboolean __handle_signal(gint fd, GIOCondition cond, gpointer user_data)
        memcpy(&type_len, buf, sizeof(size_t));
        memcpy(&data_len, buf + sizeof(size_t), sizeof(gsize));
 
-       if ((type_len + data_len) > BUFMAX) {
+       if (type_len > BUFMAX || data_len > BUFMAX ||
+                       (type_len + data_len) > BUFMAX) {
                LOGE("received size is too large: %zu %zu", type_len, data_len);
                close(clifd);
                return FALSE;