From: Matt Joiner <anacrolix@gmail.com>
Date: Wed, 29 Sep 2021 06:56:01 +0000 (+1000)
Subject: Limit decoded bencode string lengths to 32 bits
X-Git-Tag: v1.32.0~10
X-Git-Url: http://www.git.stargrave.org/?a=commitdiff_plain;h=6156aebf7183502e1844e1190cbd1cba49949f11;p=btrtrc.git

Limit decoded bencode string lengths to 32 bits

Found in fuzzing
---

diff --git a/bencode/decode.go b/bencode/decode.go
index 0cb04b91..768c9c7b 100644
--- a/bencode/decode.go
+++ b/bencode/decode.go
@@ -154,7 +154,7 @@ func (d *Decoder) parseString(v reflect.Value) error {
 
 	// read the string length first
 	d.readUntil(':')
-	length, err := strconv.ParseInt(bytesAsString(d.buf.Bytes()), 10, 0)
+	length, err := strconv.ParseInt(bytesAsString(d.buf.Bytes()), 10, 32)
 	checkForIntParseError(err, start)
 
 	defer d.buf.Reset()