Prevent subtract with overflow

This changes assumes this only happens when the archive is invalid. Fixes #40
zip-rs · Jun 27, 2017 · 57a6514 · 57a6514
1 parent 5c12e51
commit 57a6514
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/src/read.rs b/src/read.rs
@@ -85,7 +85,9 @@ impl<R: Read+io::Seek> ZipArchive<R>
 
         // Some zip files have data prepended to them, resulting in the offsets all being too small. Get the amount of
         // error by comparing the actual file position we found the CDE at with the offset recorded in the CDE.
-        let archive_offset = cde_start_pos - footer.central_directory_size - footer.central_directory_offset;
+        let archive_offset = cde_start_pos.checked_sub(footer.central_directory_size)
+            .and_then(|x| x.checked_sub(footer.central_directory_offset))
+            .ok_or(ZipError::InvalidArchive("Invalid central directory size or offset"))?;
 
         let directory_start = (footer.central_directory_offset + archive_offset) as u64;
         let number_of_files = footer.number_of_files_on_this_disk as usize;