Skip to content

Commit

Permalink
mime/multipart: return overflow errors in Reader.ReadForm
Browse files Browse the repository at this point in the history 
Updates Reader.ReadForm to check for overflow errors that may
result from a leeway addition of 10MiB to the input argument
maxMemory.

Fixes #40430

Change-Id: I510b8966c95c51d04695ba9d08fcfe005fd11a5d
Reviewed-on: https://go-review.googlesource.com/c/go/+/247477
Run-TryBot: Emmanuel Odeke <emm.odeke@gmail.com>
Trust: Cuong Manh Le <cuong.manhle.vn@gmail.com>
Trust: Emmanuel Odeke <emm.odeke@gmail.com>
TryBot-Result: Go Bot <gobot@golang.org>
Reviewed-by: Emmanuel Odeke <emm.odeke@gmail.com>
  • Loading branch information
@avivklas @odeke-em
avivklas authored and odeke-em committed Sep 28, 2020
1 parent 05b626e commit 874b313
Show file tree
Hide file tree
Showing 2 changed files with 22 additions and 0 deletions.
4 changes: 4 additions & 0 deletions src/mime/multipart/formdata.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,7 @@ package multipart
import (
"bytes"
"errors"
"fmt"
"io"
"io/ioutil"
"net/textproto"
Expand Down Expand Up @@ -41,6 +42,9 @@ func (r *Reader) readForm(maxMemory int64) (_ *Form, err error) {

// Reserve an additional 10 MB for non-file parts.
maxValueBytes := maxMemory + int64(10<<20)
if maxValueBytes <= 0 {
return nil, fmt.Errorf("multipart: integer overflow from maxMemory(%d) + 10MiB for non-file parts", maxMemory)
}
for {
p, err := r.NextPart()
if err == io.EOF {
Expand Down
18 changes: 18 additions & 0 deletions src/mime/multipart/formdata_test.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,7 @@ package multipart
import (
"bytes"
"io"
"math"
"os"
"strings"
"testing"
Expand Down Expand Up @@ -52,6 +53,23 @@ func TestReadFormWithNamelessFile(t *testing.T) {
}
}

// Issue 40430: Ensure that we report integer overflows in additions of maxMemory,
// instead of silently and subtly failing without indication.
func TestReadFormMaxMemoryOverflow(t *testing.T) {
b := strings.NewReader(strings.ReplaceAll(messageWithTextContentType, "\n", "\r\n"))
r := NewReader(b, boundary)
f, err := r.ReadForm(math.MaxInt64)
if err == nil {
t.Fatal("Unexpected a non-nil error")
}
if f != nil {
t.Fatalf("Unexpected returned a non-nil form: %v\n", f)
}
if g, w := err.Error(), "integer overflow from maxMemory"; !strings.Contains(g, w) {
t.Errorf(`Error mismatch\n%q\ndid not contain\n%q`, g, w)
}
}

func TestReadFormWithTextContentType(t *testing.T) {
// From https://github.com/golang/go/issues/24041
b := strings.NewReader(strings.ReplaceAll(messageWithTextContentType, "\n", "\r\n"))
Expand Down

0 comments on commit 874b313

Please sign in to comment.