feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

sanity check on hashing size

Browse Source
This commit is contained in:
Jacob Barthelmeh
2018-06-18 15:50:44 -06:00
parent c78a552eb3
commit 38f916a798
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/internal.c
View File

@ -12242,6 +12242,11 @@ static INLINE int VerifyMac(WOLFSSL* ssl, const byte* input, word32 msgSz,
padByte = 1; padByte = 1;
if (ssl->options.tls) { if (ssl->options.tls) {
/* Sanity check for underflow, TimingPadVerify performs hash on size
* (msgSz - ivExtra) - digestSz - pad - 1 */
if (digestSz + pad + 1 > (msgSz - ivExtra)) {
return BUFFER_E;
}
ret = TimingPadVerify(ssl, input, pad, digestSz, msgSz - ivExtra, ret = TimingPadVerify(ssl, input, pad, digestSz, msgSz - ivExtra,
content); content);
if (ret != 0) if (ret != 0)