From: saurabh.s9 <saurabh.s9@samsung.com>
Date: Wed, 8 Feb 2017 06:31:47 +0000 (+0530)
Subject: [IOT-1701] Added check for int overflow
X-Git-Tag: 1.3.0~623
X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=1fce457b93851215bba102aba1a9675d103af9c5;p=platform%2Fupstream%2Fiotivity.git

[IOT-1701] Added check for int overflow

Change-Id: I5b613534ab19344a5d261f0773df52c4d9bb2176
Signed-off-by: saurabh.s9 <saurabh.s9@samsung.com>
Reviewed-on: https://gerrit.iotivity.org/gerrit/17111
Tested-by: jenkins-iotivity <jenkins@iotivity.org>
Reviewed-by: Pawel Winogrodzki <pawelwi@microsoft.com>
Reviewed-by: Phil Coval <philippe.coval@osg.samsung.com>
Reviewed-by: Randeep Singh <randeep.s@samsung.com>
---

diff --git a/resource/csdk/connectivity/src/adapter_util/ca_adapter_net_ssl.c b/resource/csdk/connectivity/src/adapter_util/ca_adapter_net_ssl.c
index 594135d..d8a7a89 100644
--- a/resource/csdk/connectivity/src/adapter_util/ca_adapter_net_ssl.c
+++ b/resource/csdk/connectivity/src/adapter_util/ca_adapter_net_ssl.c
@@ -600,6 +600,11 @@ static int RecvCallBack(void * tep, unsigned char * data, size_t dataLen)
     size_t retLen = (recBuf->len > recBuf->loaded ? recBuf->len - recBuf->loaded : 0);
     retLen = (retLen < dataLen ? retLen : dataLen);
 
+    if (retLen > INT_MAX)
+    {
+        return 0;
+    }
+
     memcpy(data, recBuf->buff + recBuf->loaded, retLen);
     recBuf->loaded += retLen;