From dc883f8556f34b324dd7677ab21c3d2840fd38a9 Mon Sep 17 00:00:00 2001
From: Christian Grothoff <christian@grothoff.org>
Date: Fri, 6 Oct 2017 21:27:58 +0200
Subject: add assertion to be more defensive against buffer overflow (cannot
 happen, but this better protects against future changes)

---
 src/exchange-lib/exchange_api_refresh_link.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/exchange-lib/exchange_api_refresh_link.c b/src/exchange-lib/exchange_api_refresh_link.c
index 5b2286e6e..ca556688d 100644
--- a/src/exchange-lib/exchange_api_refresh_link.c
+++ b/src/exchange-lib/exchange_api_refresh_link.c
@@ -235,6 +235,7 @@ parse_refresh_link_ok (struct TALER_EXCHANGE_RefreshLinkHandle *rlh,
       /* decode all coins */
       for (i=0;i<json_array_size (jsona);i++)
       {
+        GNUNET_assert (i + off_coin < num_coins);
 	if (GNUNET_OK !=
 	    parse_refresh_link_coin (rlh,
 				     json_array_get (jsona,
-- 
cgit v1.2.3