From 15369ff9d7f8738d9da167fac8883bbd0067cd35 Mon Sep 17 00:00:00 2001
From: Holger Weiss <holger@zedat.fu-berlin.de>
Date: Fri, 9 May 2014 18:01:31 +0200
Subject: [PATCH] XEP-0198: Reject <resume/> with negative 'h' value

Make sure the 'h' attribute sent with a <resume/> request is
nonnegative, as mandated by XEP-0198.

We already have this check for <a/> elements.
---
 src/ejabberd_c2s.erl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/ejabberd_c2s.erl b/src/ejabberd_c2s.erl
index 5fb81d1f5..0897730a5 100644
--- a/src/ejabberd_c2s.erl
+++ b/src/ejabberd_c2s.erl
@@ -2707,7 +2707,7 @@ handle_resume(StateData, Attrs) ->
 		    case {xml:get_attr(<<"previd">>, Attrs),
 			  catch jlib:binary_to_integer(xml:get_attr_s(<<"h">>, Attrs))}
 			of
-		      {{value, PrevID}, H} when is_integer(H) ->
+		      {{value, PrevID}, H} when is_integer(H), H >= 0 ->
 			  case inherit_session_state(StateData, PrevID) of
 			    {ok, InheritedState} ->
 				{ok, InheritedState, H};