Make dnsmasq more stable. 1. Fix the length check in extract_name. 2. Add a size check to answer_request. Bug: 64575136 Test: builds Test: wifi tethering works Change-Id: Ie38321ab02b7cfdc603958a884cd8f37724fedcc (cherry picked from commit f25df861463c07908f39d9b43fe8888a4b31e848)

commit: ddc09a7d1500c6d9ed968a97c959ac28ca140138 [log] [tgz]
author: Lorenzo Colitti <lorenzo@google.com> Tue Aug 15 14:44:49 2017 +0900
committer: JP Sugarbroad <jpsugar@google.com> Mon Aug 21 16:05:12 2017 -0700
tree: 07916eb815af05df68db29530f887eb75e52235e
parent: 328d1b448a782e9544004990cad7aaaaae58d364 [diff]
diff --git a/src/rfc1035.c b/src/rfc1035.c
index 8ae0bfa..265e4df 100755
--- a/src/rfc1035.c
+++ b/src/rfc1035.c

@@ -48,7 +48,7 @@
 	/* end marker */
 	{
 	  /* check that there are the correct no of bytes after the name */
-	  if (!CHECK_LEN(header, p, plen, extrabytes))
+	  if (!CHECK_LEN(header, p1 ? p1 : p, plen, extrabytes))
 	    return 0;
 	  
 	  if (isExtract)
@@ -1142,6 +1142,9 @@
   struct crec *crecp;
   int nxdomain = 0, auth = 1, trunc = 0;
   struct mx_srv_record *rec;
+
+  // Make sure we do not underflow here too.
+  if (qlen > (limit - ((char *)header))) return 0;
  
   /* If there is an RFC2671 pseudoheader then it will be overwritten by
      partial replies, so we have to do a dry run to see if we can answer
commit	ddc09a7d1500c6d9ed968a97c959ac28ca140138	[log] [tgz]
author	Lorenzo Colitti <lorenzo@google.com>	Tue Aug 15 14:44:49 2017 +0900
committer	JP Sugarbroad <jpsugar@google.com>	Mon Aug 21 16:05:12 2017 -0700
tree	07916eb815af05df68db29530f887eb75e52235e
parent	328d1b448a782e9544004990cad7aaaaae58d364 [diff]