Merge pull request #2452 from ElvishJerricco/verify-sigs-overflow

Fix overflow when verifying signatures of content addressable paths
author: Eelco Dolstra <edolstra@gmail.com> 2018-10-08 12:03:03 +0200
committer: GitHub <noreply@github.com> 2018-10-08 12:03:03 +0200
commit: 01bd66bf8309a914edf63de7b25ee482f752c669 (patch)
tree: becb2116a0fd126574c7ee36fa3ed2b51b692f08 /src/nix
parent: 0fda9b22c7cc0f0191a51d168c4b03d6c4e98d71 (diff)
parent: b7091ce41e0073b147678f05b9a620b9bb2903c1 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/src/nix/verify.cc b/src/nix/verify.cc
index 6540208a8..7ef571561 100644
--- a/src/nix/verify.cc
+++ b/src/nix/verify.cc
@@ -120,7 +120,7 @@ struct CmdVerify : StorePathsCommand
                             for (auto sig : sigs) {
                                 if (sigsSeen.count(sig)) continue;
                                 sigsSeen.insert(sig);
-                                if (info->checkSignature(publicKeys, sig))
+                                if (validSigs < ValidPathInfo::maxSigs && info->checkSignature(publicKeys, sig))
                                     validSigs++;
                             }
                         };
author	Eelco Dolstra <edolstra@gmail.com>	2018-10-08 12:03:03 +0200
committer	GitHub <noreply@github.com>	2018-10-08 12:03:03 +0200
commit	01bd66bf8309a914edf63de7b25ee482f752c669 (patch)
tree	becb2116a0fd126574c7ee36fa3ed2b51b692f08 /src/nix
parent	0fda9b22c7cc0f0191a51d168c4b03d6c4e98d71 (diff)
parent	b7091ce41e0073b147678f05b9a620b9bb2903c1 (diff)