Fixed up some missing protocols and unchecked casts

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@5084 dc483132-0cff-0310-8789-dd5450dbe970

1 files changed, 4 insertions, 2 deletions

diff --git a/src/lib/gssapi/generic/util_token.c b/src/lib/gssapi/generic/util_token.c
index 424125d5d..c5067fde9 100644
--- a/src/lib/gssapi/generic/util_token.c
+++ b/src/lib/gssapi/generic/util_token.c
@@ -116,7 +116,7 @@ int INTERFACE g_token_size(mech, body_size)
      unsigned int body_size;
 {
    /* set body_size to sequence contents size */
-   body_size += 4 + mech->length;
+   body_size += 4 + (int) mech->length;         /* NEED overflow check */
    return(1 + der_length_size(body_size) + body_size);
 }
 
@@ -172,7 +172,9 @@ int INTERFACE g_verify_token_header(mech, body_size, buf, tok_type, toksize)
       return(0);
    toid.length = *(*buf)++;
 
-   if ((toksize-=toid.length) < 0)
+   if ((toid.length & VALID_INT_BITS) != toid.length) /* Overflow??? */
+      return(0);
+   if ((toksize-= (int) toid.length) < 0)
       return(0);
    toid.elements = *buf;
    (*buf)+=toid.length;