feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

prevent buffer overflows if sigSz > MAX_ENCODED_SIG_SZ

Browse Source
This commit is contained in:
kaleb-himes
2016-02-24 16:08:54 -07:00
parent 4858a65984
commit 16dac5597f
1 changed files with 3 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
wolfcrypt/src/asn.c
View File

@ -3586,14 +3586,12 @@ static int ConfirmSignature(const byte* buf, word32 bufSz,
break; /* not confirmed */ break; /* not confirmed */
} }
#endif #endif
if (sigSz > MAX_ENCODED_SIG_SZ) {
WOLFSSL_MSG("Verify Signature is too big");
}
if (wc_InitRsaKey(pubKey, heap) != 0) { if (wc_InitRsaKey(pubKey, heap) != 0) {
WOLFSSL_MSG("InitRsaKey failed"); WOLFSSL_MSG("InitRsaKey failed");
} }
else if (sigSz > MAX_ENCODED_SIG_SZ) {
WOLFSSL_MSG("Verify Signature is too big");
}
else if (wc_RsaPublicKeyDecode(key, &idx, pubKey, keySz) < 0) { else if (wc_RsaPublicKeyDecode(key, &idx, pubKey, keySz) < 0) {
WOLFSSL_MSG("ASN Key decode error RSA"); WOLFSSL_MSG("ASN Key decode error RSA");
} }