feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

don't allow zero length asn names in certs

Browse Source
This commit is contained in:
toddouska
2012-03-01 16:46:24 -08:00
parent 815f3b8f75
commit 4c948e2ef7
2 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
configure.ac
View File

@ -6,7 +6,7 @@
# #
# #
AC_INIT([cyassl],[2.0.8],[http://www.yassl.com]) AC_INIT([cyassl],[2.0.9],[http://www.yassl.com])
AC_CONFIG_AUX_DIR(config) AC_CONFIG_AUX_DIR(config)

4
ctaocrypt/src/asn.c
View File

@ -1300,6 +1300,10 @@ static int GetName(DecodedCert* cert, int nameType)
cert->maxIdx) < 0) cert->maxIdx) < 0)
return ASN_PARSE_E; return ASN_PARSE_E;
if (strLen == 0) {
CYASSL_MSG("Zero length name");
return ASN_PARSE_E;
}
if (strLen > (int)(ASN_NAME_MAX - idx)) if (strLen > (int)(ASN_NAME_MAX - idx))
return ASN_PARSE_E; return ASN_PARSE_E;