From 7a132466689b63881180aefa06cb242c4eb1a88b Mon Sep 17 00:00:00 2001
From: Tobias Brunner <tobias@strongswan.org>
Date: Mon, 2 Mar 2020 17:36:33 +0100
Subject: [PATCH] crypt-burn: Add sanity check for buffer length

This value is passed to chunk_alloc(), which LGTM complains about.
---
 scripts/crypt_burn.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/scripts/crypt_burn.c b/scripts/crypt_burn.c
index 3bd36d2dce..bf338f0b4e 100644
--- a/scripts/crypt_burn.c
+++ b/scripts/crypt_burn.c
@@ -196,6 +196,11 @@ int main(int argc, char *argv[])
 	if (argc > 2)
 	{
 		len = atoi(argv[2]);
+		if (len > (2^30))
+		{
+			fprintf(stderr, "buffer too large (1 GiB limit)\n");
+			return 1;
+		}
 	}
 	if (argc > 3)
 	{
-- 
2.39.2