@@ -1,3 +1,7 @@

+Mon May 28 13:39:55 CEST 2007 (tk)

+----------------------------------

+  * libclamav: revert r3054, to be replaced with session based limits

+

 Sat May 26 14:05:44 CEST 2007 (tk)

 ----------------------------------

   * libclamav/matcher-ac.c: fix segfault on OOM (bb#515)

@@ -185,6 +185,17 @@ static int cli_unrar_scanmetadata(int desc, rar_metadata_t *metadata, cli_ctx *c

 static int cli_unrar_checklimits(const cli_ctx *ctx, const rar_metadata_t *metadata, unsigned int files)

 {

     if(ctx->limits) {

+	if(ctx->limits->maxratio && metadata->unpack_size && metadata->pack_size) {

+	    if(metadata->unpack_size / metadata->pack_size >= ctx->limits->maxratio) {

+		cli_dbgmsg("RAR: Max ratio reached (%u, max: %u)\n", (unsigned int) (metadata->unpack_size / metadata->pack_size), ctx->limits->maxratio);

+		if(BLOCKMAX) {

+		    *ctx->virname = "Oversized.RAR";

+		    return CL_VIRUS;

+		}

+		return CL_EMAXSIZE;

+	    }

+	}

+

 	if(ctx->limits->maxfilesize && (metadata->unpack_size > ctx->limits->maxfilesize)) {

 	    cli_dbgmsg("RAR: %s: Size exceeded (%lu, max: %lu)\n", metadata->filename, (unsigned long int) metadata->unpack_size, ctx->limits->maxfilesize);

 	    if(BLOCKMAX) {

@@ -194,21 +205,6 @@ static int cli_unrar_checklimits(const cli_ctx *ctx, const rar_metadata_t *metad

 	    return CL_EMAXSIZE;

 	}

-	if(ctx->limits->maxratio && metadata->unpack_size && metadata->pack_size) {

-	    if(metadata->unpack_size / metadata->pack_size >= ctx->limits->maxratio) {

-		cli_dbgmsg("RAR: Max ratio reached (%u, max: %u)\n", (unsigned int) (metadata->unpack_size / metadata->pack_size), ctx->limits->maxratio);

-		if(ctx->limits->maxfilesize && (metadata->unpack_size <= ctx->limits->maxfilesize)) {

-		    cli_dbgmsg("RAR: Ignoring ratio limit (file size doesn't hit limits)\n");

-		} else {

-		    if(BLOCKMAX) {

-			*ctx->virname = "Oversized.RAR";

-			return CL_VIRUS;

-		    }

-		    return CL_EMAXSIZE;

-		}

-	    }

-	}

-

 	if(ctx->limits->maxfiles && (files > ctx->limits->maxfiles)) {

 	    cli_dbgmsg("RAR: Files limit reached (max: %u)\n", ctx->limits->maxfiles);

 	    if(BLOCKMAX) {

@@ -440,13 +436,9 @@ static int cli_scanzip(int desc, cli_ctx *ctx, off_t sfx_offset, uint32_t *sfx_c

 	}

 	if(ctx->limits && ctx->limits->maxratio > 0 && ((unsigned) zdirent.st_size / (unsigned) zdirent.d_csize) >= ctx->limits->maxratio) {

-	    if(ctx->limits->maxfilesize && ((unsigned int) zdirent.st_size <= ctx->limits->maxfilesize)) {

-		cli_dbgmsg("Zip: Ignoring ratio limit (file size doesn't hit limits)\n");

-	    } else {

-		*ctx->virname = "Oversized.Zip";

-		ret = CL_VIRUS;

-		break;

-	    }

+	    *ctx->virname = "Oversized.Zip";

+	    ret = CL_VIRUS;

+	    break;

         }

 	if(DETECT_ENCRYPTED && encrypted) {