... leaving the k->str could lead to buffer over-reads later on.

author Seonah Moon <seonah1.moon@samsung.com>

Mon, 2 Jul 2018 04:54:24 +0000 (13:54 +0900)

committer Seonah Moon <seonah1.moon@samsung.com>

Mon, 2 Jul 2018 05:08:20 +0000 (14:08 +0900)
author Seonah Moon <seonah1.moon@samsung.com>
Mon, 2 Jul 2018 04:54:24 +0000 (13:54 +0900)
committer Seonah Moon <seonah1.moon@samsung.com>
Mon, 2 Jul 2018 05:08:20 +0000 (14:08 +0900)
diff --git a/lib/http.c b/lib/http.c

index 841f6cc..dc10f5f 100644 (file)
--- a/lib/http.c
+++ b/lib/http.c
@@ -2966,6 +2966,8 @@ CURLcode Curl_http_readwrite_headers(struct Curl_easy *data,
  {
    CURLcode result;
    struct SingleRequest *k = &data->req;
+  ssize_t onread = *nread;
+  char *ostr = k->str;
  
    /* header line within buffer loop */
    do {
@@ -3030,7 +3032,9 @@ CURLcode Curl_http_readwrite_headers(struct Curl_easy *data,
          else {
            /* this was all we read so it's all a bad header */
            k->badheader = HEADER_ALLBAD;
-          *nread = (ssize_t)rest_length;
+          *nread = onread;
+          k->str = ostr;
+          return CURLE_OK;
          }
          break;
        }
author	Seonah Moon <seonah1.moon@samsung.com>
	Mon, 2 Jul 2018 04:54:24 +0000 (13:54 +0900)
committer	Seonah Moon <seonah1.moon@samsung.com>
	Mon, 2 Jul 2018 05:08:20 +0000 (14:08 +0900)