diff options
| author | Guy Harris <guy@alum.mit.edu> | 2012-02-11 07:12:34 +0000 |
|---|---|---|
| committer | Guy Harris <guy@alum.mit.edu> | 2012-02-11 07:12:34 +0000 |
| commit | 0e2773b6336f04026e91c5262406a23e96c6da88 (patch) | |
| tree | 87f700d9f60fd4b7f840db5abff0edf08cd0980b | |
| parent | 31204e84065c26fa17542f2e22ae112a3c61899c (diff) | |
Don't use 16-bit integers as counters. The code won't be any faster on
anything that can run Wireshark (it might be slower), and if the maximum
count value is 16-bit, you can loop forever if the maximum count value
happens to be 65535.
(Yes, this means that
guint i, j;
...
for (i = 0; i < j; i++)
...
risks looping forever if j is 2^32-1, and the same applies to 64-bit
counters. There are probably fewer protocols with 32-bit counts, and
probably even fewer with 64-bit counts, but the way it should be done in
those cases, for safety, is
i = 0;
for (;;) {
if (i >= j)
break;
...
if (i == j - 1)
break;
}
or something such as that.)
Fixes bug 6809.
#BACKPORT
Will schedule for 1.6.x.
svn path=/trunk/; revision=40967
| -rw-r--r-- | epan/dissectors/packet-ieee80211.c | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/epan/dissectors/packet-ieee80211.c b/epan/dissectors/packet-ieee80211.c index 81981b5205..62e665cc52 100644 --- a/epan/dissectors/packet-ieee80211.c +++ b/epan/dissectors/packet-ieee80211.c @@ -5872,7 +5872,8 @@ dissect_vendor_ie_wpawme(proto_tree * tree, tvbuff_t * tvb, int offset, guint32 proto_item *wpa_sub_ucs_item, *wpa_sub_akms_item; proto_tree *wpa_mcs_tree, *wpa_ucs_tree, *wpa_akms_tree; proto_tree *wpa_sub_ucs_tree, *wpa_sub_akms_tree; - guint16 i, ucs_count, akms_count; + guint16 ucs_count, akms_count; + guint i; proto_tree_add_item(tree, hf_ieee80211_wfa_ie_wpa_version, tvb, offset, 2, ENC_LITTLE_ENDIAN); offset += 2; @@ -6431,7 +6432,8 @@ dissect_rsn_ie(proto_tree * tree, tvbuff_t * tvb, int offset, guint32 tag_len) proto_item *rsn_sub_pcs_item, *rsn_sub_akms_item; proto_tree *rsn_gcs_tree, *rsn_pcs_tree, *rsn_akms_tree, *rsn_cap_tree, *rsn_pmkid_tree, *rsn_gmcs_tree; proto_tree *rsn_sub_pcs_tree, *rsn_sub_akms_tree; - guint16 i, pcs_count, akms_count, pmkid_count; + guint16 pcs_count, akms_count, pmkid_count; + guint i; int tag_end = offset + tag_len; proto_tree_add_item(tree, hf_ieee80211_rsn_version, tvb, offset, 2, ENC_LITTLE_ENDIAN); @@ -11295,7 +11297,7 @@ dissect_ieee80211_common (tvbuff_t * tvb, packet_info * pinfo, if (is_amsdu && tvb_reported_length_remaining(next_tvb, 0) > 4){ tvbuff_t *volatile msdu_tvb = NULL; guint32 msdu_offset = 0; - guint16 i = 1; + guint i = 1; const guint8 *lcl_src = NULL; const guint8 *lcl_dst = NULL; guint16 msdu_length; |