feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Merge pull request #6998 from SparkiDev/tls_pad_no_hash_raw_fix

Browse Source 
TLS_hmac: when no raw hash, make sure maxSz is not neg
This commit is contained in:
JacobBarthelmeh
2023-11-27 09:37:57 -07:00
committed by GitHub
parent 9f06d337e3 bc36202087
commit 36015e9131
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/tls.c
View File

@@ -1139,6 +1139,8 @@ static int Hmac_UpdateFinal(Hmac* hmac, byte* digest, const byte* in,
msgSz &= ~(0 - (msgSz >> 31)); msgSz &= ~(0 - (msgSz >> 31));
realSz = WOLFSSL_TLS_HMAC_INNER_SZ + msgSz; realSz = WOLFSSL_TLS_HMAC_INNER_SZ + msgSz;
maxSz = WOLFSSL_TLS_HMAC_INNER_SZ + (sz - 1) - macSz; maxSz = WOLFSSL_TLS_HMAC_INNER_SZ + (sz - 1) - macSz;
/* Make negative result 0 */
maxSz &= ~(0 - (maxSz >> 31));
/* Calculate #blocks processed in HMAC for max and real data. */ /* Calculate #blocks processed in HMAC for max and real data. */
blocks = maxSz >> blockBits; blocks = maxSz >> blockBits;