gfwleak/tango-verify-policy
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

bugfix:修复扫描TUNNEL_ENDPOINT越界问题

Browse Source
This commit is contained in:
fengweihao
2023-08-02 17:45:20 +08:00
parent 01d9e97f0a
commit 23bc1ec129
1 changed files with 2 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
platform/src/verify_matcher.cpp
View File

@@ -147,7 +147,7 @@ struct policy_scan_ctx
int tunnel_endpoint_x; int tunnel_endpoint_x;
int bool_id_array_idx; int bool_id_array_idx;
unsigned long long bool_id_array[128]; unsigned long long bool_id_array[256];
int isExclusion; int isExclusion;
struct ip_data_ctx ip_ctx; struct ip_data_ctx ip_ctx;
@@ -322,7 +322,6 @@ static int get_column_num(const char* line)
return i; return i;
} }
void ip_location_table_new_cb(const char *table_name, int table_id, const char* key, const char* table_line, void **ad, long argl, void* argp) void ip_location_table_new_cb(const char *table_name, int table_id, const char* key, const char* table_line, void **ad, long argl, void* argp)
{ {
int ret=0,profile_id=0,is_valid=0; int ret=0,profile_id=0,is_valid=0;
@@ -1510,7 +1509,7 @@ int policy_verify_scan_tunnel_id(long long *result, struct ip_addr *sip, int hit
struct tunnel_data_ctx *endpoint_data[TUNNEL_BOOL_ID_MAX]; struct tunnel_data_ctx *endpoint_data[TUNNEL_BOOL_ID_MAX];
ret=maat_ip_plugin_table_get_ex_data(g_policy_rt->feather[vsys_id], g_policy_rt->profile_table_id[POLICY_TUNNEL_ENDPOINT], sip, (void **)&endpoint_data, TUNNEL_BOOL_ID_MAX); ret=maat_ip_plugin_table_get_ex_data(g_policy_rt->feather[vsys_id], g_policy_rt->profile_table_id[POLICY_TUNNEL_ENDPOINT], sip, (void **)&endpoint_data, TUNNEL_BOOL_ID_MAX);
for(i=0; i<ret && i<TUNNEL_BOOL_ID_MAX && ctx->bool_id_array_idx < TUNNEL_BOOL_ID_MAX; i++) for(i=0; i<ret && i<TUNNEL_BOOL_ID_MAX; i++)
{ {
ctx->bool_id_array[ctx->bool_id_array_idx]=(long long)endpoint_data[i]->id; ctx->bool_id_array[ctx->bool_id_array_idx]=(long long)endpoint_data[i]->id;
ctx->bool_id_array_idx++; ctx->bool_id_array_idx++;